Vulnerabilities > Missing Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-14 | CVE-2021-37535 | Missing Authorization vulnerability in SAP Netweaver Application Server Java SAP NetWeaver Application Server Java (JMS Connector Service) - versions 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not perform necessary authorization checks for user privileges. | 7.5 |
| 2021-09-14 | CVE-2021-38164 | Missing Authorization vulnerability in SAP ERP Financial Accounting SAP ERP Financial Accounting (RFOPENPOSTING_FR) versions - SAP_APPL - 600, 602, 603, 604, 605, 606, 616, SAP_FIN - 617, 618, 700, 720, 730, SAPSCORE - 125, S4CORE, 100, 101, 102, 103, 104, 105, allows a registered attacker to invoke certain functions that would otherwise be restricted to specific users. | 5.5 |
| 2021-09-08 | CVE-2021-38388 | Missing Authorization vulnerability in Linecorp Central Dogma Central Dogma allows privilege escalation with mirroring to the internal dogma repository that has a file managing the authorization of the project. | 6.5 |
| 2021-09-08 | CVE-2021-1835 | Missing Authorization vulnerability in Apple Ipados and Iphone OS This issue was addressed with improved checks. | 2.1 |
| 2021-09-07 | CVE-2021-38698 | Missing Authorization vulnerability in Hashicorp Consul HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. | 4.0 |
| 2021-09-01 | CVE-2021-40378 | Missing Authorization vulnerability in Comprotech products An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices. | 8.5 |
| 2021-09-01 | CVE-2021-40379 | Missing Authorization vulnerability in Comprotech products An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices. | 5.0 |
| 2021-08-31 | CVE-2021-36232 | Missing Authorization vulnerability in Unit4 Mik.Starlight 7.9.5.24363 Improper Authorization in multiple functions in MIK.starlight 7.9.5.24363 allows an authenticated attacker to escalate privileges. | 6.5 |
| 2021-08-25 | CVE-2021-40088 | Missing Authorization vulnerability in Primekey Ejbca An issue was discovered in PrimeKey EJBCA before 7.6.0. | 4.9 |
| 2021-08-24 | CVE-2021-30874 | Missing Authorization vulnerability in Apple Ipados and Iphone OS An authorization issue was addressed with improved state management. | 7.5 |