Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-26 | CVE-2023-22482 | Incorrect Authorization vulnerability in Argoproj Argo CD Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. | 8.8 |
| 2023-01-26 | CVE-2023-22500 | Incorrect Authorization vulnerability in Glpi-Project Glpi GLPI is a Free Asset and IT Management Software package. | 7.5 |
| 2023-01-24 | CVE-2023-21719 | Incorrect Authorization vulnerability in Microsoft Edge Chromium Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability | 6.5 |
| 2023-01-20 | CVE-2023-20018 | Incorrect Authorization vulnerability in Cisco products A vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones could allow an unauthenticated, remote attacker to bypass authentication on an affected device. This vulnerability is due to insufficient validation of user-supplied input. | 6.5 |
| 2023-01-17 | CVE-2022-23739 | Incorrect Authorization vulnerability in Github Enterprise Server An incorrect authorization vulnerability was identified in GitHub Enterprise Server, allowing for escalation of privileges in GraphQL API requests from GitHub Apps. | 9.8 |
| 2023-01-14 | CVE-2022-45353 | Incorrect Authorization vulnerability in Muffingroup Betheme 26.5.1.4/26.6/26.6.1 Broken Access Control in Betheme theme <= 26.6.1 on WordPress. | 8.1 |
| 2023-01-14 | CVE-2023-0298 | Incorrect Authorization vulnerability in Firefly-Iii Firefly III Incorrect Authorization in GitHub repository firefly-iii/firefly-iii prior to 5.8.0. | 6.5 |
| 2023-01-14 | CVE-2023-22480 | Incorrect Authorization vulnerability in Fit2Cloud Kubeoperator KubeOperator is an open source Kubernetes distribution focused on helping enterprises plan, deploy and operate production-level K8s clusters. | 9.8 |
| 2023-01-13 | CVE-2023-0091 | Incorrect Authorization vulnerability in Redhat Keycloak A flaw was found in Keycloak, where it did not properly check client tokens for possible revocation in its client credential flow. | 3.8 |
| 2023-01-12 | CVE-2022-4167 | Incorrect Authorization vulnerability in Gitlab Incorrect Authorization check affecting all versions of GitLab EE from 13.11 prior to 15.5.7, 15.6 prior to 15.6.4, and 15.7 prior to 15.7.2 allows group access tokens to continue working even after the group owner loses the ability to revoke them. | 7.5 |