Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-12 | CVE-2022-45956 | Incorrect Authorization vulnerability in BOA 0.94.13/0.94.14 Boa Web Server versions 0.94.13 through 0.94.14 fail to validate the correct security constraint on the HEAD HTTP method allowing everyone to bypass the Basic Authorization mechanism. | 5.3 |
| 2022-12-12 | CVE-2022-45760 | Incorrect Authorization vulnerability in Sens Project Sens SENS v1.0 is vulnerable to Incorrect Access Control vulnerability. | 8.8 |
| 2022-12-08 | CVE-2022-39903 | Incorrect Authorization vulnerability in Google Android Improper access control vulnerability in RCS call prior to SMR Dec-2022 Release 1 allows local attackers to access RCS incoming call number. | 3.3 |
| 2022-12-08 | CVE-2022-39913 | Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information. | 3.3 |
| 2022-12-08 | CVE-2022-39914 | Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device information. | 3.3 |
| 2022-12-08 | CVE-2022-46792 | Incorrect Authorization vulnerability in Hasura Graphql Engine Hasura GraphQL Engine before 2.15.2 mishandles row-level authorization in the Update Many API for Postgres backends. | 8.8 |
| 2022-12-05 | CVE-2022-44039 | Incorrect Authorization vulnerability in Franklinfueling Colibri Firmware 1.9.22.8925 Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. | 9.8 |
| 2022-12-05 | CVE-2022-46169 | Incorrect Authorization vulnerability in Cacti Cacti is an open source platform which provides a robust and extensible operational monitoring and fault management framework for users. | 9.8 |
| 2022-12-05 | CVE-2022-43515 | Incorrect Authorization vulnerability in Zabbix Frontend Zabbix Frontend provides a feature that allows admins to maintain the installation and ensure that only certain IP addresses can access it. | 9.8 |
| 2022-12-01 | CVE-2022-41970 | Incorrect Authorization vulnerability in Nextcloud Server Nextcloud Server is an open source personal cloud server. | 5.3 |