Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-07	CVE-2021-32172	Missing Authorization vulnerability in Maianscriptworld Maian Cart 3.8 Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin. network low complexity maianscriptworld CWE-862 critical	9.8
2021-10-06	CVE-2021-0680	Missing Authorization vulnerability in Google Android In system properties, there is a possible information disclosure due to a missing permission check. local low complexity google CWE-862	5.5
2021-10-06	CVE-2021-0681	Missing Authorization vulnerability in Google Android In system properties, there is a possible information disclosure due to a missing permission check. local low complexity google CWE-862	5.5
2021-10-06	CVE-2021-0682	Missing Authorization vulnerability in Google Android In sendAccessibilityEvent of NotificationManagerService.java, there is a possible disclosure of notification data due to a missing permission check. local low complexity google CWE-862	5.5
2021-10-06	CVE-2021-0686	Missing Authorization vulnerability in Google Android 10.0/11.0 In getDefaultSmsPackage of RoleManagerService.java, there is a possible way to get information about the default sms app of a different device user due to a missing permission check. local low complexity google CWE-862	5.5
2021-10-05	CVE-2021-39226	Missing Authorization vulnerability in multiple products Grafana is an open source data visualization platform. network low complexity grafana fedoraproject CWE-862	7.3
2021-10-05	CVE-2021-41554	Missing Authorization vulnerability in Archibus web Central 21.3.3.815 ARCHIBUS Web Central 21.3.3.815 (a version from 2014) does not properly validate requests for access to data and functionality in these affected endpoints: /archibus/schema/ab-edit-users.axvw, /archibus/schema/ab-data-dictionary-table.axvw, /archibus/schema/ab-schema-add-field.axvw, /archibus/schema/ab-core/views/process-navigator/ab-my-user-profile.axvw. network low complexity archibus CWE-862	8.8
2021-10-05	CVE-2021-39893	Missing Authorization vulnerability in Gitlab A potential DOS vulnerability was discovered in GitLab starting with version 9.1 that allowed parsing files without authorisation. network low complexity gitlab CWE-862	7.5
2021-09-30	CVE-2021-41729	Missing Authorization vulnerability in Baicloud-Cms Project Baicloud-Cms 2.5.7 BaiCloud-cms v2.5.7 is affected by an arbitrary file deletion vulnerability, which allows an attacker to delete arbitrary files on the server through /user/ppsave.php. network low complexity baicloud-cms-project CWE-862 critical	9.1
2021-09-29	CVE-2021-33924	Missing Authorization vulnerability in Confluent Ansible Confluent Ansible (cp-ansible) version 5.5.0, 5.5.1, 5.5.2 and 6.0.0 is vulnerable to Incorrect Access Control via its auxiliary component that allows remote attackers to access sensitive information. network low complexity confluent CWE-862 critical	9.8

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization