Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-21	CVE-2022-41251	Missing Authorization vulnerability in Jenkins Apprenda A missing permission check in Jenkins Apprenda Plugin 2.2.0 and earlier allows users with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. network low complexity jenkins CWE-862	4.3
2022-09-21	CVE-2022-41252	Missing Authorization vulnerability in Jenkins Cons3Rt 1.0.0 Missing permission checks in Jenkins CONS3RT Plugin 1.0.0 and earlier allows users with Overall/Read permission to enumerate credentials ID of credentials stored in Jenkins. network low complexity jenkins CWE-862	4.3
2022-09-21	CVE-2022-41254	Missing Authorization vulnerability in Jenkins Cons3Rt 1.0.0 Missing permission checks in Jenkins CONS3RT Plugin 1.0.0 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. network low complexity jenkins CWE-862	6.5
2022-09-17	CVE-2022-39960	Missing Authorization vulnerability in Netic Group Export 1.0.1 The Netic Group Export add-on before 1.0.3 for Atlassian Jira does not perform authorization checks. network low complexity netic CWE-862	5.3
2022-09-14	CVE-2022-40673	Missing Authorization vulnerability in multiple products KDiskMark before 3.1.0 lacks authorization checking for D-Bus methods such as Helper::flushPageCache. local low complexity kdiskmark-project fedoraproject CWE-862	7.8
2022-09-09	CVE-2022-36856	Missing Authorization vulnerability in Google Android 12.0 Improper access control vulnerability in Telecom application prior to SMR Sep-2022 Release 1 allows attacker to start emergency calls via undefined permission. local low complexity google CWE-862	3.3
2022-09-09	CVE-2022-39119	Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In network service, there is a missing permission check. local low complexity google CWE-862	7.8
2022-09-08	CVE-2022-36091	Missing Authorization vulnerability in Xwiki XWiki Platform Web Templates are templates for XWiki Platform, a generic wiki platform. network low complexity xwiki CWE-862	7.5
2022-09-07	CVE-2022-31167	Missing Authorization vulnerability in Xwiki XWiki Platform Security Parent POM contains the security APIs for XWiki Platform, a generic wiki platform. network low complexity xwiki CWE-862	6.5
2022-09-06	CVE-2022-2461	Missing Authorization vulnerability in Transposh Wordpress Translation The Transposh WordPress Translation plugin for WordPress is vulnerable to unauthorized setting changes by unauthenticated users in versions up to, and including, 1.0.8.1. network low complexity transposh CWE-862	5.3

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization