Vulnerabilities > Missing Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-21 | CVE-2023-4302 | Missing Authorization vulnerability in Jenkins Fortify A missing permission check in Jenkins Fortify Plugin 22.1.38 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins. | 4.3 |
| 2023-08-16 | CVE-2023-40344 | Missing Authorization vulnerability in Jenkins Delphix A missing permission check in Jenkins Delphix Plugin 3.0.2 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins. | 4.3 |
| 2023-08-16 | CVE-2023-39507 | Missing Authorization vulnerability in Recruit Rikunabi Next Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. | 6.1 |
| 2023-08-14 | CVE-2023-21234 | Missing Authorization vulnerability in Google Android 11.0/13.0 In launchConfirmationActivity of ChooseLockSettingsHelper.java, there is a possible way to enable developer options without the lockscreen PIN due to a missing permission check. | 5.5 |
| 2023-08-14 | CVE-2023-21288 | Missing Authorization vulnerability in Google Android In visitUris of Notification.java, there is a possible way to reveal images across users due to a missing permission check. | 5.5 |
| 2023-08-14 | CVE-2023-21132 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |
| 2023-08-14 | CVE-2023-21133 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |
| 2023-08-14 | CVE-2023-21134 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |
| 2023-08-14 | CVE-2023-21140 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |
| 2023-08-11 | CVE-2023-4105 | Missing Authorization vulnerability in Mattermost Mattermost fails to delete the attachments when deleting a message in a thread allowing a simple user to still be able to access and download the attachment of a deleted message | 4.3 |