Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-05-17 | CVE-2020-4669 | Missing Authorization vulnerability in IBM Planning Analytics Cloud and Planning Analytics Local IBM Planning Analytics Local 2.0 connects to a MongoDB server. | 6.4 |
2021-05-13 | CVE-2021-32917 | Missing Authorization vulnerability in multiple products An issue was discovered in Prosody before 0.11.9. | 5.3 |
2021-05-10 | CVE-2021-23014 | Missing Authorization vulnerability in F5 products On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, and 14.1.x before 14.1.4, BIG-IP Advanced WAF and ASM are missing authorization checks for file uploads to a specific directory within the REST API which might allow Authenticated users with guest privileges to upload files. | 6.5 |
2021-05-07 | CVE-2021-27573 | Missing Authorization vulnerability in Remotemouse Emote Remote Mouse An issue was discovered in Emote Remote Mouse through 4.0.0.0. | 7.5 |
2021-05-07 | CVE-2021-32093 | Missing Authorization vulnerability in NSA Emissary 5.9.0 The ConfigFileAction component of U.S. | 4.0 |
2021-05-07 | CVE-2021-32095 | Missing Authorization vulnerability in NSA Emissary 5.9.0 U.S. | 5.5 |
2021-05-06 | CVE-2020-18888 | Missing Authorization vulnerability in Puppycms 5.1 Arbitrary File Deletion vulnerability in puppyCMS v5.1 allows remote malicious attackers to delete the file/folder via /admin/functions.php. | 5.0 |
2021-05-06 | CVE-2021-22208 | Missing Authorization vulnerability in Gitlab An issue has been discovered in GitLab affecting versions starting with 13.5 up to 13.9.7. | 4.0 |
2021-05-06 | CVE-2021-1505 | Missing Authorization vulnerability in Cisco Catalyst Sd-Wan Manager and Sd-Wan Vmanage Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the application. | 8.8 |
2021-05-06 | CVE-2021-1506 | Missing Authorization vulnerability in Cisco Catalyst Sd-Wan Manager and Sd-Wan Vmanage Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the application. | 7.2 |