Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-31	CVE-2023-52275	Missing Authorization vulnerability in Tecno-Mobile Camon X Firmware Gallery3d on Tecno Camon X CA7 devices allows attackers to view hidden images by navigating to data/com.android.gallery3d/.privatealbum/.encryptfiles and guessing the correct image file extension. low complexity tecno-mobile CWE-862	2.1
2023-12-28	CVE-2023-49229	Missing Authorization vulnerability in Peplink Balance TWO Firmware 8.1.0 An issue was discovered in Peplink Balance Two before 8.4.0. network low complexity peplink CWE-862	4.3
2023-12-28	CVE-2023-49230	Missing Authorization vulnerability in Peplink Balance TWO Firmware 8.1.0 An issue was discovered in Peplink Balance Two before 8.4.0. network low complexity peplink CWE-862	8.8
2023-12-27	CVE-2023-49003	Missing Authorization vulnerability in Simplemobiletools Simple Dialer 5.18.1 An issue in simplemobiletools Simple Dialer 5.18.1 allows an attacker to bypass intended access restrictions via interaction with com.simplemobiletools.dialer.activities.DialerActivity. network low complexity simplemobiletools CWE-862	5.3
2023-12-19	CVE-2023-46212	Missing Authorization vulnerability in Wpvnteam WP Extra Missing Authorization, Cross-Site Request Forgery (CSRF) vulnerability in TienCOP WP EXtra allows Accessing Functionality Not Properly Constrained by ACLs, Cross Site Request Forgery.This issue affects WP EXtra: from n/a through 6.2. network low complexity wpvnteam CWE-862	8.8
2023-12-18	CVE-2023-5949	Missing Authorization vulnerability in Wpmudev Smartcrawl The SmartCrawl WordPress plugin before 3.8.3 does not prevent unauthorised users from accessing password-protected posts' content. network low complexity wpmudev CWE-862	7.5
2023-12-18	CVE-2023-5056	Missing Authorization vulnerability in Redhat Service Interconnect 1.0 A flaw was found in the Skupper operator, which may permit a certain configuration to create a service account that would allow an authenticated attacker in the adjacent cluster to view deployments in all namespaces in the cluster. low complexity redhat CWE-862	4.1
2023-12-18	CVE-2023-50976	Missing Authorization vulnerability in Redpanda Redpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API. network low complexity redpanda CWE-862 critical	9.8
2023-12-14	CVE-2023-48676	Missing Authorization vulnerability in Acronis Cyber Protect Cloud Agent 21/22/23 Sensitive information disclosure and manipulation due to missing authorization. local low complexity acronis CWE-862	7.1
2023-12-13	CVE-2023-50765	Missing Authorization vulnerability in Jenkins Scriptler A missing permission check in Jenkins Scriptler Plugin 342.v6a_89fd40f466 and earlier allows attackers with Overall/Read permission to read the contents of a Groovy script by knowing its ID. network low complexity jenkins CWE-862	4.3

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization