Vulnerabilities > Incorrect Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-07	CVE-2021-28661	Incorrect Authorization vulnerability in Silverstripe Default SilverStripe GraphQL Server (aka silverstripe/graphql) 3.x through 3.4.1 permission checker not inherited by query subclass. network low complexity silverstripe CWE-863	4.3
2021-10-05	CVE-2021-22262	Incorrect Authorization vulnerability in Gitlab Missing access control in all GitLab versions starting from 13.12 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all versions starting from 14.2 before 14.2.2 with Jira Cloud integration enabled allows Jira users without administrative privileges to add and remove Jira Connect Namespaces via the GitLab.com for Jira Cloud application configuration page network low complexity gitlab CWE-863	4.3
2021-10-04	CVE-2021-41093	Incorrect Authorization vulnerability in Wire Wire is an open source secure messenger. network low complexity wire CWE-863 critical	9.8
2021-09-28	CVE-2021-22535	Incorrect Authorization vulnerability in Microfocus Netiq Directory and Resource Administrator Unauthorized information security disclosure vulnerability on Micro Focus Directory and Resource Administrator (DRA) product, affecting all DRA versions prior to 10.1 Patch 1. network low complexity microfocus CWE-863	4.9
2021-09-24	CVE-2021-40654	Incorrect Authorization vulnerability in Dlink Dir-615 Firmware 17.00 An information disclosure issue exist in D-LINK-DIR-615 B2 2.01mt. network low complexity dlink CWE-863	6.5
2021-09-24	CVE-2021-40655	Incorrect Authorization vulnerability in Dlink Dir-605L Firmware 2.01Mt An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT. network low complexity dlink CWE-863	7.5
2021-09-24	CVE-2021-36749	Incorrect Authorization vulnerability in Apache Druid In the Druid ingestion system, the InputSource is used for reading data from a certain data source. network low complexity apache CWE-863	6.5
2021-09-21	CVE-2020-19551	Incorrect Authorization vulnerability in Wuzhicms Blacklist bypass issue exists in WUZHI CMS up to and including 4.1.0 in common.func.php, which when uploaded can cause remote code executiong. network low complexity wuzhicms CWE-863	8.8
2021-09-20	CVE-2021-41082	Incorrect Authorization vulnerability in Discourse Discourse is a platform for community discussion. network low complexity discourse CWE-863	7.5
2021-09-20	CVE-2020-16630	Incorrect Authorization vulnerability in TI products TI’s BLE stack caches and reuses the LTK’s property for a bonded mobile. high complexity ti CWE-863	6.8

Vulnerabilities > Incorrect Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Incorrect Authorization"}]}

Vulnerabilities > Incorrect Authorization