Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-08-14 | CVE-2023-21288 | Missing Authorization vulnerability in Google Android In visitUris of Notification.java, there is a possible way to reveal images across users due to a missing permission check. | 5.5 |
2023-08-14 | CVE-2023-21132 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |
2023-08-14 | CVE-2023-21133 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |
2023-08-14 | CVE-2023-21134 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |
2023-08-14 | CVE-2023-21140 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |
2023-08-11 | CVE-2023-4105 | Missing Authorization vulnerability in Mattermost Mattermost fails to delete the attachments when deleting a message in a thread allowing a simple user to still be able to access and download the attachment of a deleted message | 4.3 |
2023-08-11 | CVE-2023-4106 | Missing Authorization vulnerability in Mattermost Mattermost fails to check if the requesting user is a guest before performing different actions to public playbooks, resulting a guest being able to view, join, edit, export and archive public playbooks. | 6.5 |
2023-08-10 | CVE-2023-39966 | Missing Authorization vulnerability in Fit2Cloud 1Panel 1.4.3 1Panel is an open source Linux server operation and maintenance management panel. | 9.8 |
2023-08-10 | CVE-2023-40216 | Missing Authorization vulnerability in Openbsd 7.3 OpenBSD 7.3 before errata 014 is missing an argument-count bounds check in console terminal emulation. | 5.5 |
2023-08-10 | CVE-2023-4282 | Missing Authorization vulnerability in Wpdeveloper Embedpress The EmbedPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'admin_post_remove' and 'remove_private_data' functions in versions up to, and including, 3.8.2. | 4.3 |