Vulnerabilities > Missing Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-12 | CVE-2019-6580 | Missing Authorization vulnerability in Siemens products A vulnerability has been identified in Siveillance VMS 2017 R2 (All versions < V11.2a), Siveillance VMS 2018 R1 (All versions < V12.1a), Siveillance VMS 2018 R2 (All versions < V12.2a), Siveillance VMS 2018 R3 (All versions < V12.3a), Siveillance VMS 2019 R1 (All versions < V13.1a). | 9.8 |
| 2019-06-11 | CVE-2019-10339 | Missing Authorization vulnerability in Jenkins JX Resources A missing permission check in Jenkins JX Resources Plugin 1.0.36 and earlier in GlobalPluginConfiguration#doValidateClient allowed users with Overall/Read access to have Jenkins connect to an attacker-specified Kubernetes server, potentially leaking credentials. | 8.8 |
| 2019-06-11 | CVE-2019-10333 | Missing Authorization vulnerability in Jenkins Electricflow Missing permission checks in Jenkins ElectricFlow Plugin 1.1.5 and earlier in various HTTP endpoints allowed users with Overall/Read access to obtain information about the Jenkins ElectricFlow Plugin configuration and configuration of connected ElectricFlow instances. | 4.3 |
| 2019-06-11 | CVE-2019-10332 | Missing Authorization vulnerability in Jenkins Electricflow A missing permission check in Jenkins ElectricFlow Plugin 1.1.5 and earlier in Configuration#doTestConnection allowed users with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials. | 4.3 |
| 2019-06-07 | CVE-2019-2098 | Missing Authorization vulnerability in Google Android In areNotificationsEnabledForPackage of NotificationManagerService.java, there is a possible permissions bypass due to a missing permissions check. | 7.8 |
| 2019-06-07 | CVE-2019-2092 | Missing Authorization vulnerability in Google Android In isSeparateProfileChallengeAllowed of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. | 7.8 |
| 2019-06-07 | CVE-2019-2091 | Missing Authorization vulnerability in Google Android In GetPermittedAccessibilityServicesForUser of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. | 7.8 |
| 2019-06-07 | CVE-2019-2090 | Missing Authorization vulnerability in Google Android In isPackageDeviceAdminOnAnyUser of PackageManagerService.java, there is a possible permissions bypass due to a missing permissions check. | 7.8 |
| 2019-06-06 | CVE-2019-12274 | Missing Authorization vulnerability in Suse Rancher In Rancher 1 and 2 through 2.2.3, unprivileged users (if allowed to deploy nodes) can gain admin access to the Rancher management plane because node driver options intentionally allow posting certain data to the cloud. | 8.8 |
| 2019-06-03 | CVE-2019-10147 | Missing Authorization vulnerability in Redhat RKT rkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`. | 7.7 |