Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-25	CVE-2019-10409	Missing Authorization vulnerability in Jenkins Project Inheritance A missing permission check in Jenkins Project Inheritance Plugin 2.0.0 and earlier allowed attackers with Overall/Read permission to trigger project generation from templates. network low complexity jenkins CWE-862	4.3
2019-09-16	CVE-2019-15723	Missing Authorization vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.9.x and 11.10.x before 11.10.1. network low complexity gitlab CWE-862	5.0
2019-09-13	CVE-2019-15030	Missing Authorization vulnerability in multiple products In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. local low complexity linux canonical opensuse redhat CWE-862	3.6
2019-09-11	CVE-2019-16236	Missing Authorization vulnerability in multiple products Dino before 2019-09-10 does not check roster push authorization in module/roster/module.vala. network low complexity dino canonical fedoraproject debian CWE-862	7.5
2019-09-11	CVE-2019-14995	Missing Authorization vulnerability in Atlassian Jira Server The /rest/api/1.0/render resource in Jira before version 8.4.0 allows remote anonymous attackers to determine if an attachment with a specific name exists and if an issue key is valid via a missing permissions check. network low complexity atlassian CWE-862	5.0
2019-09-10	CVE-2019-12942	Missing Authorization vulnerability in Ttlock TTLock devices do not properly block guest access in certain situations where the network connection to the cloud is unavailable. low complexity ttlock CWE-862	6.5
2019-09-09	CVE-2019-5463	Missing Authorization vulnerability in Gitlab An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. network low complexity gitlab CWE-862	5.3
2019-09-09	CVE-2019-16124	Missing Authorization vulnerability in Youphptube In YouPHPTube 7.4, the file install/checkConfiguration.php has no access control, which leads to everyone being able to edit the configuration file, and insert malicious PHP code. network low complexity youphptube CWE-862 critical	9.8
2019-09-08	CVE-2019-16097	Missing Authorization vulnerability in Linuxfoundation Harbor core/api/user.go in Harbor 1.7.0 through 1.8.2 allows non-admin users to create admin accounts via the POST /api/users API, when Harbor is setup with DB as authentication backend and allow user to do self-registration. network low complexity linuxfoundation CWE-862	4.0
2019-09-05	CVE-2019-15954	Missing Authorization vulnerability in Totaljs Total.Js CMS 12.0.0 An issue was discovered in Total.js CMS 12.0.0. network low complexity totaljs CWE-862 critical	9.0

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization