Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2019-07-31	CVE-2019-10344	Missing Authorization vulnerability in Jenkins Configuration AS Code Missing permission checks in Jenkins Configuration as Code Plugin 1.24 and earlier in various HTTP endpoints allowed users with Overall/Read access to access the generated schema and documentation for this plugin containing detailed information about installed plugins. network low complexity jenkins CWE-862	4.3
2019-07-30	CVE-2019-10161	Missing Authorization vulnerability in multiple products It was discovered that libvirtd before versions 4.10.1 and 5.4.1 would permit read-only clients to use the virDomainSaveImageGetXMLDesc() API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. local low complexity redhat canonical CWE-862	7.8
2019-07-30	CVE-2019-5449	Missing Authorization vulnerability in Nextcloud Server A missing check in the Nextcloud Server prior to version 15.0.1 causes leaking of calendar event names when adding or modifying confidential or private events. network low complexity nextcloud CWE-862	4.3
2019-07-25	CVE-2019-10184	Missing Authorization vulnerability in multiple products undertow before version 2.0.23.Final is vulnerable to an information leak issue. network low complexity redhat netapp CWE-862	7.5
2019-07-23	CVE-2019-11702	Missing Authorization vulnerability in Mozilla Firefox A hyperlink using protocols associated with Internet Explorer, such as IE.HTTP:, can be used to open local files at a known location with Internet Explorer if a user approves execution when prompted. network low complexity mozilla CWE-862	6.5
2019-07-23	CVE-2019-11700	Missing Authorization vulnerability in Mozilla Firefox A hyperlink using the res: protocol can be used to open local files at a known location in Internet Explorer if a user approves execution when prompted. network low complexity mozilla CWE-862	6.5
2019-07-23	CVE-2019-1010152	Missing Authorization vulnerability in Zzcms zzcms 8.3 and earlier is affected by: File Delete to Code Execution. network low complexity zzcms CWE-862 critical	9.8
2019-07-23	CVE-2019-1010150	Missing Authorization vulnerability in Zzcms zzcms 8.3 and earlier is affected by: File Delete to Code Execution. network low complexity zzcms CWE-862 critical	9.8
2019-07-23	CVE-2019-1010149	Missing Authorization vulnerability in Zzcms zzcms version 8.3 and earlier is affected by: File Delete to Code Execution. network low complexity zzcms CWE-862 critical	9.8
2019-07-18	CVE-2019-1010246	Missing Authorization vulnerability in Mailcleaner MailCleaner before c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9 is affected by: Unauthenticated MySQL database password information disclosure. network low complexity mailcleaner CWE-862	7.5

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization