Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-20 | CVE-2022-46076 | Incorrect Authorization vulnerability in Dlink Dir-869 Firmware and Dir-869Ax Firmware D-Link DIR-869 DIR869Ax_FW102B15 is vulnerable to Authentication Bypass via phpcgi. | 7.5 |
| 2022-12-17 | CVE-2022-23488 | Incorrect Authorization vulnerability in Bigbluebutton BigBlueButton is an open source web conferencing system. | 7.5 |
| 2022-12-16 | CVE-2022-23490 | Incorrect Authorization vulnerability in Bigbluebutton BigBlueButton is an open source web conferencing system. | 4.3 |
| 2022-12-16 | CVE-2022-42351 | Incorrect Authorization vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. | 4.3 |
| 2022-12-16 | CVE-2022-41962 | Incorrect Authorization vulnerability in Bigbluebutton BigBlueButton is an open source web conferencing system. | 2.7 |
| 2022-12-14 | CVE-2022-23741 | Incorrect Authorization vulnerability in Github Enterprise Server An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed a scoped user-to-server token to escalate to full admin/owner privileges. | 7.2 |
| 2022-12-13 | CVE-2022-23473 | Incorrect Authorization vulnerability in Enalean Tuleap Tuleap is an Open Source Suite to improve management of software developments and collaboration. | 4.3 |
| 2022-12-13 | CVE-2022-46160 | Incorrect Authorization vulnerability in Enalean Tuleap Tuleap is an Open Source Suite to improve management of software developments and collaboration. | 4.3 |
| 2022-12-13 | CVE-2022-41274 | Incorrect Authorization vulnerability in SAP Disclosure Management 10.1 SAP Disclosure Management - version 10.1, allows an authenticated attacker to exploit certain misconfigured application endpoints to read sensitive data. | 6.5 |
| 2022-12-12 | CVE-2022-3879 | Incorrect Authorization vulnerability in CAR Dealer Project CAR Dealer The Car Dealer (Dealership) and Vehicle sales WordPress Plugin WordPress plugin before 3.05 does not have proper authorisation and CSRF in an AJAX action, allowing any authenticated users, such as subscriber to call it and install and activate arbitrary plugins from wordpress.org | 6.5 |