Vulnerabilities > Missing Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-17 | CVE-2020-0293 | Missing Authorization vulnerability in Google Android 11.0 In Java network APIs, there is possible access to sensitive network state due to a missing permission check. | 5.5 |
| 2020-09-17 | CVE-2020-0290 | Missing Authorization vulnerability in Google Android 11.0 In PackageManager, there is a missing permission check. | 5.5 |
| 2020-09-17 | CVE-2020-0289 | Missing Authorization vulnerability in Google Android 11.0 In PackageManager, there is a missing permission check. | 5.5 |
| 2020-09-17 | CVE-2020-0288 | Missing Authorization vulnerability in Google Android 11.0 In PackageManager, there is a missing permission check. | 5.5 |
| 2020-09-17 | CVE-2020-0277 | Missing Authorization vulnerability in Google Android 11.0 In NetworkPolicyManagerService, there is a possible permissions bypass due to a missing permission check. | 7.8 |
| 2020-09-17 | CVE-2020-0266 | Missing Authorization vulnerability in Google Android 11.0 In factory reset protection, there is a possible FRP bypass due to a missing permission check. | 7.8 |
| 2020-09-17 | CVE-2020-0387 | Missing Authorization vulnerability in Google Android In manifest files of the SmartSpace package, there is a possible tapjacking vector due to a missing permission check. | 7.8 |
| 2020-09-17 | CVE-2020-0401 | Missing Authorization vulnerability in Google Android In setInstallerPackageName of PackageManagerService.java, there is a missing permission check. | 7.8 |
| 2020-09-16 | CVE-2020-14306 | Missing Authorization vulnerability in Istio-Operator Project Istio-Operator An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator all versions through 1.1.3. | 8.8 |
| 2020-09-16 | CVE-2020-2272 | Missing Authorization vulnerability in Jenkins Elastest A missing permission check in Jenkins ElasTest Plugin 1.2.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials. | 4.3 |