Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-04	CVE-2023-38463	Missing Authorization vulnerability in Google Android 11.0 In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges local low complexity google CWE-862	5.5
2023-09-04	CVE-2023-38464	Missing Authorization vulnerability in Google Android 11.0 In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges local low complexity google CWE-862	7.8
2023-09-04	CVE-2023-38465	Missing Authorization vulnerability in Google Android 11.0/12.0 In ims service, there is a possible missing permission check. local low complexity google CWE-862	5.5
2023-09-04	CVE-2023-38466	Missing Authorization vulnerability in Google Android 11.0/12.0 In ims service, there is a possible missing permission check. local low complexity google CWE-862	5.5
2023-09-01	CVE-2023-41046	Missing Authorization vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. network low complexity xwiki CWE-862	6.3
2023-09-01	CVE-2023-23763	Missing Authorization vulnerability in Github Enterprise Server An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. network low complexity github CWE-862	5.3
2023-09-01	CVE-2023-24674	Missing Authorization vulnerability in Bludit 4.0.0 Permissions vulnerability found in Bludit CMS v.4.0.0 allows local attackers to escalate privileges via the role:admin parameter. local low complexity bludit CWE-862	7.8
2023-08-31	CVE-2023-41750	Missing Authorization vulnerability in Acronis Agent Sensitive information disclosure due to missing authorization. local low complexity acronis CWE-862	5.5
2023-08-31	CVE-2023-2174	Missing Authorization vulnerability in Badgeos The BadgeOS plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_badgeos_log_entries function in versions up to, and including, 3.7.1.6. network low complexity badgeos CWE-862	4.3
2023-08-31	CVE-2023-3999	Missing Authorization vulnerability in Plugin Waiting The Waiting: One-click countdowns plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on its AJAX calls in versions up to, and including, 0.6.2. network low complexity plugin CWE-862	4.3

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization