Vulnerabilities > Missing Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-27 | CVE-2019-9323 | Missing Authorization vulnerability in Google Android 10.0 In the Wallpaper Manager service, there is a possible information disclosure due to a missing permission check. | 5.3 |
| 2019-09-27 | CVE-2019-9295 | Missing Authorization vulnerability in Google Android 10.0 In com.android.apps.tag, there is a possible bypass of user interaction requirements due to a missing permission check. | 7.8 |
| 2019-09-27 | CVE-2019-9263 | Missing Authorization vulnerability in Google Android 10.0 In telephony, there is a possible bypass of user interaction requirements due to missing permission checks. | 7.8 |
| 2019-09-26 | CVE-2019-16738 | Missing Authorization vulnerability in multiple products In MediaWiki through 1.33.0, Special:Redirect allows information disclosure of suppressed usernames via a User ID Lookup. | 5.3 |
| 2019-09-25 | CVE-2019-10409 | Missing Authorization vulnerability in Jenkins Project Inheritance A missing permission check in Jenkins Project Inheritance Plugin 2.0.0 and earlier allowed attackers with Overall/Read permission to trigger project generation from templates. | 4.3 |
| 2019-09-16 | CVE-2019-15723 | Missing Authorization vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.9.x and 11.10.x before 11.10.1. | 5.3 |
| 2019-09-13 | CVE-2019-15030 | Missing Authorization vulnerability in multiple products In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. | 4.4 |
| 2019-09-11 | CVE-2019-16236 | Missing Authorization vulnerability in multiple products Dino before 2019-09-10 does not check roster push authorization in module/roster/module.vala. | 7.5 |
| 2019-09-11 | CVE-2019-14995 | Missing Authorization vulnerability in Atlassian Jira Server The /rest/api/1.0/render resource in Jira before version 8.4.0 allows remote anonymous attackers to determine if an attachment with a specific name exists and if an issue key is valid via a missing permissions check. | 5.3 |
| 2019-09-10 | CVE-2019-12942 | Missing Authorization vulnerability in Ttlock TTLock devices do not properly block guest access in certain situations where the network connection to the cloud is unavailable. | 6.5 |