Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-07-04 | CVE-2023-20773 | Missing Authorization vulnerability in Google Android 12.0/13.0 In vow, there is a possible escalation of privilege due to a missing permission check. | 7.8 |
2023-07-03 | CVE-2023-36815 | Missing Authorization vulnerability in Sealos Sealos is a Cloud Operating System designed for managing cloud-native applications. | 8.1 |
2023-07-01 | CVE-2021-4388 | Missing Authorization vulnerability in Wpopal Opal Estate 1.6.11 The Opal Estate plugin for WordPress is vulnerable to featured property modifications in versions up to, and including, 1.6.11. | 5.3 |
2023-07-01 | CVE-2023-30586 | Missing Authorization vulnerability in Nodejs Node.Js 20.1.0/20.3.0 A privilege escalation vulnerability exists in Node.js 20 that allowed loading arbitrary OpenSSL engines when the experimental permission model is enabled, which can bypass and/or disable the permission model. | 7.5 |
2023-06-30 | CVE-2023-36144 | Missing Authorization vulnerability in Intelbras SG 2404 MR Firmware 1.00.54 An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1.00.54 allows an unauthenticated attacker to download the backup file of the device, exposing critical information about the device configuration. | 7.5 |
2023-06-29 | CVE-2023-36607 | Missing Authorization vulnerability in Ovarro products The affected TBox RTUs are missing authorization for running some API commands. | 5.3 |
2023-06-28 | CVE-2023-21149 | Missing Authorization vulnerability in Google Android In registerGsmaServiceIntentReceiver of ShannonRcsService.java, there is a possible way to activate/deactivate RCS service due to a missing permission check. | 7.8 |
2023-06-28 | CVE-2023-21173 | Missing Authorization vulnerability in Google Android 13.0 In multiple methods of DataUsageList.java, there is a possible way to learn about admin user's network activities due to a missing permission check. | 5.5 |
2023-06-28 | CVE-2023-21177 | Missing Authorization vulnerability in Google Android 13.0 In requestAppKeyboardShortcuts of WindowManagerService.java, there is a possible way to infer the app a user is interacting with due to a missing permission check. | 5.5 |
2023-06-28 | CVE-2023-21185 | Missing Authorization vulnerability in Google Android 13.0 In multiple functions of WifiNetworkFactory.java, there is a missing permission check. | 7.8 |