Vulnerabilities > Incorrect Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-08	CVE-2022-39903	Incorrect Authorization vulnerability in Google Android Improper access control vulnerability in RCS call prior to SMR Dec-2022 Release 1 allows local attackers to access RCS incoming call number. local low complexity google CWE-863	3.3
2022-12-08	CVE-2022-39913	Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information. local low complexity google CWE-863	3.3
2022-12-08	CVE-2022-39914	Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device information. local low complexity google CWE-863	3.3
2022-12-08	CVE-2022-46792	Incorrect Authorization vulnerability in Hasura Graphql Engine Hasura GraphQL Engine before 2.15.2 mishandles row-level authorization in the Update Many API for Postgres backends. network low complexity hasura CWE-863	8.8
2022-12-05	CVE-2022-44039	Incorrect Authorization vulnerability in Franklinfueling Colibri Firmware 1.9.22.8925 Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. network low complexity franklinfueling CWE-863 critical	9.8
2022-12-05	CVE-2022-46169	Incorrect Authorization vulnerability in Cacti Cacti is an open source platform which provides a robust and extensible operational monitoring and fault management framework for users. network low complexity cacti CWE-863 critical	9.8
2022-12-05	CVE-2022-43515	Incorrect Authorization vulnerability in Zabbix Frontend Zabbix Frontend provides a feature that allows admins to maintain the installation and ensure that only certain IP addresses can access it. network low complexity zabbix CWE-863 critical	9.8
2022-12-01	CVE-2022-41970	Incorrect Authorization vulnerability in Nextcloud Server Nextcloud Server is an open source personal cloud server. network low complexity nextcloud CWE-863	5.3
2022-11-28	CVE-2022-24189	Incorrect Authorization vulnerability in Sz-Fujia Ourphoto 1.4.1 The user_token authorization header on the Ourphoto App version 1.4.1 /apiv1/* end-points is not implemented properly. network low complexity sz-fujia CWE-863	6.5
2022-11-28	CVE-2022-41944	Incorrect Authorization vulnerability in Discourse Discourse is an open-source discussion platform. network low complexity discourse CWE-863	4.3

Vulnerabilities > Incorrect Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Incorrect Authorization"}]}

Vulnerabilities > Incorrect Authorization