Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-09-04 | CVE-2023-38463 | Missing Authorization vulnerability in Google Android 11.0 In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges | 5.5 |
2023-09-04 | CVE-2023-38464 | Missing Authorization vulnerability in Google Android 11.0 In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges | 7.8 |
2023-09-04 | CVE-2023-38465 | Missing Authorization vulnerability in Google Android 11.0/12.0 In ims service, there is a possible missing permission check. | 5.5 |
2023-09-04 | CVE-2023-38466 | Missing Authorization vulnerability in Google Android 11.0/12.0 In ims service, there is a possible missing permission check. | 5.5 |
2023-09-01 | CVE-2023-41046 | Missing Authorization vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 6.3 |
2023-09-01 | CVE-2023-23763 | Missing Authorization vulnerability in Github Enterprise Server An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. | 5.3 |
2023-09-01 | CVE-2023-24674 | Missing Authorization vulnerability in Bludit 4.0.0 Permissions vulnerability found in Bludit CMS v.4.0.0 allows local attackers to escalate privileges via the role:admin parameter. | 7.8 |
2023-08-31 | CVE-2023-41750 | Missing Authorization vulnerability in Acronis Agent Sensitive information disclosure due to missing authorization. | 5.5 |
2023-08-31 | CVE-2023-2174 | Missing Authorization vulnerability in Badgeos The BadgeOS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_badgeos_log_entries function in versions up to, and including, 3.7.1.6. | 4.3 |
2023-08-31 | CVE-2023-3999 | Missing Authorization vulnerability in Plugin Waiting The Waiting: One-click countdowns plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on its AJAX calls in versions up to, and including, 0.6.2. | 4.3 |