Vulnerabilities > Missing Authorization

DATE CVE VULNERABILITY TITLE RISK
2021-09-08 CVE-2020-24672 Missing Authorization vulnerability in ABB Base Software
A vulnerability in Base Software for SoftControl allows an attacker to insert and run arbitrary code in a computer running the affected product.
network
abb CWE-862
6.8
2021-09-08 CVE-2021-1835 Missing Authorization vulnerability in Apple Ipados and Iphone OS
This issue was addressed with improved checks.
local
low complexity
apple CWE-862
2.1
2021-09-01 CVE-2021-40378 Missing Authorization vulnerability in Comprotech products
An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices.
network
low complexity
comprotech CWE-862
8.5
2021-08-25 CVE-2021-40088 Missing Authorization vulnerability in Primekey Ejbca
An issue was discovered in PrimeKey EJBCA before 7.6.0.
network
primekey CWE-862
4.9
2021-08-20 CVE-2020-25359 Missing Authorization vulnerability in Rconfig 3.9.5
An arbitrary file deletion vulnerability in rConfig 3.9.5 has been fixed for 3.9.6.
network
low complexity
rconfig CWE-862
6.4
2021-08-20 CVE-2020-27464 Missing Authorization vulnerability in Rconfig
An insecure update feature in the /updater.php component of rConfig 3.9.6 and below allows attackers to execute arbitrary code via a crafted ZIP file.
network
rconfig CWE-862
6.8
2021-08-20 CVE-2020-27466 Missing Authorization vulnerability in Rconfig 3.9.6
An arbitrary file write vulnerability in lib/AjaxHandlers/ajaxEditTemplate.php of rConfig 3.9.6 allows attackers to execute arbitrary code via a crafted file.
network
rconfig CWE-862
6.8
2021-08-17 CVE-2021-0641 Missing Authorization vulnerability in Google Android
In getAvailableSubscriptionInfoList of SubscriptionController.java, there is a possible disclosure of unique identifiers due to a missing permission check.
local
low complexity
google CWE-862
2.1
2021-08-17 CVE-2021-0642 Missing Authorization vulnerability in Google Android
In onResume of VoicemailSettingsFragment.java, there is a possible way to retrieve a trackable identifier without permissions due to a missing permission check.
network
google CWE-862
4.3
2021-08-16 CVE-2021-38755 Missing Authorization vulnerability in Hospital Management System Project Hospital Management System
Unauthenticated doctor entry deletion in Hospital Management System in admin-panel1.php.
5.0