Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-05 | CVE-2018-15405 | Incorrect Authorization vulnerability in Cisco UCS Director 2.1(0.0)/6.6(1.0) A vulnerability in the web interface for specific feature sets of Cisco Integrated Management Controller (IMC) Supervisor and Cisco UCS Director could allow an authenticated, remote attacker to access sensitive information. | 6.5 |
| 2018-10-05 | CVE-2018-0460 | Incorrect Authorization vulnerability in Cisco Network Functions Virtualization Infrastructure A vulnerability in the REST API of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to read any file on an affected system. | 6.5 |
| 2018-10-05 | CVE-2018-0459 | Incorrect Authorization vulnerability in Cisco Network Functions Virtualization Infrastructure A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to cause an affected system to reboot or shut down. | 6.5 |
| 2018-10-02 | CVE-2018-9492 | Incorrect Authorization vulnerability in Google Android 8.0/8.1/9.0 In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. | 7.8 |
| 2018-09-28 | CVE-2018-1250 | Incorrect Authorization vulnerability in Dell EMC Unity Firmware and EMC Unityvsa Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains an Authorization Bypass vulnerability. | 6.5 |
| 2018-09-21 | CVE-2018-16597 | Incorrect Authorization vulnerability in multiple products An issue was discovered in the Linux kernel before 4.8. | 5.5 |
| 2018-09-18 | CVE-2018-7929 | Incorrect Authorization vulnerability in Huawei Mate RS Firmware 9.1.0.321(C786E320R1P1T8) Huawei Mate RS smartphones with the versions before NEO-AL00D 8.1.0.167(C786) have a lock-screen bypass vulnerability. | 6.8 |
| 2018-08-23 | CVE-2018-1999047 | Incorrect Authorization vulnerability in Jenkins A improper authorization vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in UpdateCenter.java that allows attackers to cancel a Jenkins restart scheduled through the update center. | 6.5 |
| 2018-08-17 | CVE-2018-15468 | Incorrect Authorization vulnerability in XEN An issue was discovered in Xen through 4.11.x. | 6.0 |
| 2018-08-09 | CVE-2018-10925 | Incorrect Authorization vulnerability in multiple products It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on certain statements involved with "INSERT ... | 8.1 |