Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-05 | CVE-2021-46891 | Incorrect Authorization vulnerability in Huawei Emui and Harmonyos Vulnerability of incomplete read and write permission verification in the GPU module. | 9.8 |
| 2023-07-05 | CVE-2021-46890 | Incorrect Authorization vulnerability in Huawei Emui and Harmonyos Vulnerability of incomplete read and write permission verification in the GPU module. | 9.8 |
| 2023-07-03 | CVE-2023-26258 | Incorrect Authorization vulnerability in Arcserve UDP Arcserve UDP through 9.0.6034 allows authentication bypass. | 9.8 |
| 2023-06-29 | CVE-2023-30955 | Incorrect Authorization vulnerability in Palantir Foundry Workspace-Server A security defect was identified in Foundry workspace-server that enabled a user to bypass an authorization check and view settings related to 'Developer Mode'. | 5.4 |
| 2023-06-29 | CVE-2023-33190 | Incorrect Authorization vulnerability in Sealos Project Sealos Sealos is an open source cloud operating system distribution based on the Kubernetes kernel. | 9.8 |
| 2023-06-28 | CVE-2023-21225 | Incorrect Authorization vulnerability in Google Android there is a possible way to bypass the protected confirmation screen due to Failure to lock display power. | 7.8 |
| 2023-06-22 | CVE-2023-3114 | Incorrect Authorization vulnerability in Hashicorp Terraform Enterprise Terraform Enterprise since v202207-1 did not properly implement authorization rules for agent pools, allowing the workspace to be targeted by unauthorized agents. | 7.7 |
| 2023-06-22 | CVE-2023-34923 | Incorrect Authorization vulnerability in Topdesk 12.10.12 XML Signature Wrapping (XSW) in SAML-based Single Sign-on feature in TOPdesk v12.10.12 allows bad actors with credentials to authenticate with the Identity Provider (IP) to impersonate any TOPdesk user via SAML Response manipulation. | 8.1 |
| 2023-06-21 | CVE-2023-0971 | Incorrect Authorization vulnerability in Silabs Z/Ip Gateway SDK 7.18.01 A logic error in SiLabs Z/IP Gateway SDK 7.18.02 and earlier allows authentication to be bypassed, remote administration of Z-Wave controllers, and S0/S2 encryption keys to be recovered. | 8.8 |
| 2023-06-19 | CVE-2022-48488 | Incorrect Authorization vulnerability in Huawei Emui Vulnerability of bypassing the default desktop security controls.Successful exploitation of this vulnerability may cause unauthorized modifications to the desktop. | 5.3 |