Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-06-22 | CVE-2020-22176 | Missing Authorization vulnerability in PHPgurukul Hospital Management System 4.0 PHPGurukul Hospital Management System in PHP v4.0 has a sensitive information disclosure vulnerability in multiple areas. | 7.5 |
2021-06-22 | CVE-2021-0539 | Missing Authorization vulnerability in Google Android 11.0 In archiveStoredConversation of MmsService.java, there is a possible way to archive message conversation without user consent due to a missing permission check. | 4.6 |
2021-06-22 | CVE-2021-0547 | Missing Authorization vulnerability in Google Android 11.0 In onReceive of NetInitiatedActivity.java, there is a possible way to supply an attacker-controlled value to a GPS HAL handler due to a missing permission check. | 4.6 |
2021-06-22 | CVE-2021-0554 | Missing Authorization vulnerability in Google Android 11.0 In isBackupServiceActive of BackupManagerService.java, there is a missing permission check. | 2.1 |
2021-06-22 | CVE-2021-0568 | Missing Authorization vulnerability in Google Android 11.0 In onReceive of DevicePolicyManagerService.java, there is a possible enabling of disabled profiles due to a missing permission check. | 4.6 |
2021-06-22 | CVE-2021-20733 | Missing Authorization vulnerability in Asken Improper authorization in handler for custom URL scheme vulnerability in ????????? (asken diet) for Android versions from v.3.0.0 to v.4.2.x allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App. | 6.1 |
2021-06-21 | CVE-2021-0505 | Missing Authorization vulnerability in Google Android 11.0 In the Settings app, there is a possible way to disable an always-on VPN due to a missing permission check. | 7.2 |
2021-06-21 | CVE-2021-0513 | Missing Authorization vulnerability in Google Android In deleteNotificationChannel and related functions of NotificationManagerService.java, there is a possible permission bypass due to improper state validation. | 4.6 |
2021-06-21 | CVE-2021-0521 | Missing Authorization vulnerability in Google Android In getAllPackages of PackageManagerService, there is a possible information disclosure due to a missing permission check. | 2.1 |
2021-06-16 | CVE-2020-20444 | Missing Authorization vulnerability in Openclinic Project Openclinic 0.8.20160412 Jact OpenClinic 0.8.20160412 allows the attacker to read server files after login to the the admin account by an infected 'file' GET parameter in '/shared/view_source.php' which "could" lead to RCE vulnerability . | 7.2 |