Vulnerabilities > Missing Authorization

DATE CVE VULNERABILITY TITLE RISK
2023-07-12 CVE-2023-33895 Missing Authorization vulnerability in Google Android
In fastDial service, there is a missing permission check.
local
low complexity
google CWE-862
5.5
5.5
2023-07-12 CVE-2023-33898 Missing Authorization vulnerability in Unisoc products
In telephony service, there is a missing permission check.
local
low complexity
unisoc CWE-862
5.5
5.5
2023-07-12 CVE-2023-33899 Missing Authorization vulnerability in Google Android
In telephony service, there is a missing permission check.
local
low complexity
google CWE-862
5.5
5.5
2023-07-12 CVE-2023-33900 Missing Authorization vulnerability in Google Android
In telephony service, there is a missing permission check.
local
low complexity
google CWE-862
5.5
5.5
2023-07-12 CVE-2023-33901 Missing Authorization vulnerability in Google Android 10.0/11.0/12.0
In bluetooth service, there is a missing permission check.
local
low complexity
google CWE-862
5.5
5.5
2023-07-12 CVE-2023-33902 Missing Authorization vulnerability in Google Android 10.0/11.0/12.0
In bluetooth service, there is a missing permission check.
local
low complexity
google CWE-862
5.5
5.5
2023-07-10 CVE-2023-2796 Missing Authorization vulnerability in Myeventon Eventon
The EventON WordPress plugin before 2.1.2 lacks authentication and authorization in its eventon_ics_download ajax action, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id.
network
low complexity
myeventon CWE-862
5.3
5.3
2023-07-10 CVE-2023-3076 Missing Authorization vulnerability in Inspireui Mstore API
The MStore API WordPress plugin before 3.9.9 does not prevent visitors from creating user accounts with the role of their choice via their wholesale REST API endpoint.
network
low complexity
inspireui CWE-862
critical
 9.8
9.8
2023-07-06 CVE-2023-20899 Missing Authorization vulnerability in VMWare Sd-Wan Edge Firmware 4.5.0
VMware SD-WAN (Edge) contains a bypass authentication vulnerability.
network
low complexity
vmware CWE-862
7.5
7.5
2023-07-06 CVE-2023-30195 Missing Authorization vulnerability in Lineagrafica Lgdetailedorder 1.1.20
In the module "Detailed Order" (lgdetailedorder) in version up to 1.1.20 from Linea Grafica for PrestaShop, a guest can download personal informations without restriction formatted in json.
network
low complexity
lineagrafica CWE-862
7.5
7.5