Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-20 | CVE-2024-7711 | Incorrect Authorization vulnerability in Github Enterprise Server An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server, allowing an attacker to update the title, assignees, and labels of any issue inside a public repository. | 4.3 |
| 2024-08-20 | CVE-2024-39690 | Incorrect Authorization vulnerability in Projectcapsule Capsule Capsule is a multi-tenancy and policy-based framework for Kubernetes. | 8.8 |
| 2024-08-19 | CVE-2024-43250 | Incorrect Authorization vulnerability in Bitapps BIT Form Incorrect Authorization vulnerability in Bit Apps Bit Form Pro bitformpro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bit Form Pro: from n/a through 2.6.4. | 6.5 |
| 2024-08-13 | CVE-2024-41939 | Incorrect Authorization vulnerability in Siemens Sinec NMS 1.0/1.0.3/2.0 A vulnerability has been identified in SINEC NMS (All versions < V3.0). | 8.8 |
| 2024-08-13 | CVE-2024-41941 | Incorrect Authorization vulnerability in Siemens Sinec NMS 1.0/1.0.3/2.0 A vulnerability has been identified in SINEC NMS (All versions < V3.0). | 4.3 |
| 2024-08-12 | CVE-2024-42473 | Incorrect Authorization vulnerability in Openfga 1.5.7/1.5.8 OpenFGA is an authorization/permission engine. | 9.8 |
| 2024-08-07 | CVE-2024-7265 | Incorrect Authorization vulnerability in Nask EZD RP Incorrect User Management vulnerability in Naukowa i Akademicka Siec Komputerowa - Panstwowy Instytut Badawczy EZD RP allows logged-in user to change the password of any user, including root user, which could lead to privilege escalation. This issue affects EZD RP: from 15 before 15.84, from 16 before 16.15, from 17 before 17.2. | 8.8 |
| 2024-08-07 | CVE-2024-7266 | Incorrect Authorization vulnerability in Nask EZD RP Incorrect User Management vulnerability in Naukowa i Akademicka Siec Komputerowa - Panstwowy Instytut Badawczy EZD RP allows logged-in user to list all users in the system, including those from other organizations. This issue affects EZD RP: from 15 before 15.84, from 16 before 16.15, from 17 before 17.2. | 4.3 |
| 2024-08-07 | CVE-2024-42062 | Incorrect Authorization vulnerability in Apache Cloudstack CloudStack account-users by default use username and password based authentication for API and UI access. | 7.2 |
| 2024-08-06 | CVE-2024-6358 | Incorrect Authorization vulnerability in Opentext Arcsight Intelligence Incorrect Authorization vulnerability identified in OpenText ArcSight Intelligence. | 8.8 |