Vulnerabilities > Missing Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-26 | CVE-2021-0403 | Missing Authorization vulnerability in Google Android 11.0 In netdiag, there is a possible information disclosure due to a missing permission check. | 2.1 |
| 2021-02-26 | CVE-2021-23975 | Missing Authorization vulnerability in Mozilla Firefox The developer page about:memory has a Measure function for exploring what object types the browser has allocated and their sizes. | 4.3 |
| 2021-02-11 | CVE-2021-21307 | Missing Authorization vulnerability in Lucee Server Lucee Server is a dynamic, Java based (JSR-223), tag and scripting language used for rapid web application development. | 7.5 |
| 2021-02-10 | CVE-2021-0328 | Missing Authorization vulnerability in Google Android In onBatchScanReports and deliverBatchScan of GattService.java, there is a possible way to retrieve Bluetooth scan results without permissions due to a missing permission check. | 7.2 |
| 2021-01-29 | CVE-2020-29604 | Missing Authorization vulnerability in Mantisbt An issue was discovered in MantisBT before 2.24.4. | 4.0 |
| 2021-01-18 | CVE-2020-7343 | Missing Authorization vulnerability in Mcafee Agent Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. | 5.5 |
| 2021-01-15 | CVE-2021-21246 | Missing Authorization vulnerability in Onedev Project Onedev OneDev is an all-in-one devops platform. | 5.0 |
| 2021-01-14 | CVE-2020-27220 | Missing Authorization vulnerability in Eclipse Hono The Eclipse Hono AMQP and MQTT protocol adapters do not check whether an authenticated gateway device is authorized to receive command & control messages when it has subscribed only to commands for a specific device. | 9.0 |
| 2021-01-13 | CVE-2021-1143 | Missing Authorization vulnerability in Cisco Connected Mobile Experiences 10.6.0/10.6.1/10.6.2 A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an authenticated, remote attacker to enumerate what users exist on the system. | 4.3 |
| 2021-01-12 | CVE-2021-23123 | Missing Authorization vulnerability in Joomla Joomla! An issue was discovered in Joomla! 3.0.0 through 3.9.23. | 5.0 |