Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-04-24 | CVE-2020-7131 | Missing Authorization vulnerability in HP products This document describes a security vulnerability in Blade Maintenance Entity, Integrated Maintenance Entity and Maintenance Entity products. | 9.0 |
2020-04-21 | CVE-2020-11967 | Missing Authorization vulnerability in Evenroute Iqrouter Firmware 3.3.1 In IQrouter through 3.3.1, remote attackers can control the device (restart network, reboot, upgrade, reset) because of Incorrect Access Control. | 9.8 |
2020-04-17 | CVE-2019-4446 | Missing Authorization vulnerability in IBM products IBM Maximo Asset Management 7.6 could allow an authenticated user perform actions they are not authorized to by modifying request parameters. | 5.5 |
2020-04-16 | CVE-2019-14116 | Missing Authorization vulnerability in Qualcomm Ipq6018 Firmware Privilege escalation by using an altered debug policy image can occur as the XPU protecting the debug policy regions are disabled during the crash dump boot flow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018 | 7.2 |
2020-04-15 | CVE-2019-20676 | Missing Authorization vulnerability in Netgear products Certain NETGEAR devices are affected by lack of access control at the function level. | 3.6 |
2020-04-15 | CVE-2020-7278 | Missing Authorization vulnerability in Mcafee Endpoint Security Exploiting incorrectly configured access control security levels vulnerability in ENS Firewall in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 and 10.6.1 April 2020 updates allows remote attackers and local users to allow or block unauthorized traffic via pre-existing rules not being handled correctly when updating to the February 2020 updates. | 6.5 |
2020-04-14 | CVE-2020-6233 | Missing Authorization vulnerability in SAP products SAP S/4 HANA (Financial Products Subledger and Banking Services), versions - FSAPPL 400, 450, 500 and S4FPSL 100, allows an authenticated user to run an analysis report due to Missing Authorization Check, resulting in slowing the system. | 4.0 |
2020-04-14 | CVE-2020-6232 | Missing Authorization vulnerability in SAP Commerce Cloud 1811/1905 SAP Commerce, versions 1811, 1905, does not perform necessary authorization checks for an anonymous user, due to Missing Authorization Check. | 5.0 |
2020-04-14 | CVE-2020-4151 | Missing Authorization vulnerability in IBM Qradar Security Information and Event Manager 7.3.0/7.3.1/7.3.2 IBM QRadar SIEM 7.3.0 through 7.3.3 could allow an authenticated attacker to perform unauthorized actions due to improper input validation. | 4.0 |
2020-04-08 | CVE-2018-21047 | Missing Authorization vulnerability in Google Android 8.0/8.1 An issue was discovered on Samsung mobile devices with O(8.x) software. | 5.0 |