Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVEs (5,079)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-1069 1Redhat 1Openshift Nov 21, 2024 Mar 9, 2018 N/A· v4 7.1 HIGH· v3 5.4 MEDIUM· v2 Red Hat OpenShift Enterprise version 3.7 is vulnerable to access control override for container network filesystems. An attacker could override the UserId and GroupId for GlusterFS and NFS to read and write any data on t...Show more Red Hat OpenShift Enterprise version 3.7 is vulnerable to access control override for container network filesystems. An attacker could override the UserId and GroupId for GlusterFS and NFS to read and write any data on the network filesystem.Show less
CVE-2017-9285 2Microfocus Netiq 2Edirectory Edirectory Nov 21, 2024 Mar 2, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.
CVE-2017-12191 1Redhat 1Cloudforms Nov 21, 2024 Feb 28, 2018 N/A· v4 7.4 HIGH· v3 7.5 HIGH· v2 A flaw was found in the CloudForms account configuration when using VMware. By default, a shared account is used that has privileged access to VMRC (VMWare Remote Console) functions that may not be appropriate for users...Show more A flaw was found in the CloudForms account configuration when using VMware. By default, a shared account is used that has privileged access to VMRC (VMWare Remote Console) functions that may not be appropriate for users of CloudForms (and thus this account). An attacker could use this vulnerability to view and make changes to settings in the VMRC and virtual machines controlled by it that they should not have access to.Show less
CVE-2018-1168 1Hitachienergy 1Sys600 Firmware Nov 21, 2024 Feb 21, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA 9.3 with FP 1-2-3. An attacker must first obtain the ability to execute low-privileged code on the target sys...Show more This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA 9.3 with FP 1-2-3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of the access controls for the installed product files. The installation procedure leaves critical files open to manipulation by any authenticated user. An attacker can leverage this vulnerability to escalate privileges to SYSTEM. Was ZDI-CAN-5097.Show less
CVE-2016-8529 1Hp 1Lefthand Nov 21, 2024 Feb 15, 2018 N/A· v4 7.6 HIGH· v3 7.3 HIGH· v2 A Remote Arbitrary Command Execution vulnerability in HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS version v12.5 and earlier was found. The problem was resolved in LeftHand OS v12.6 or...Show more A Remote Arbitrary Command Execution vulnerability in HPE StoreVirtual 4000 Storage and StoreVirtual VSA Software running LeftHand OS version v12.5 and earlier was found. The problem was resolved in LeftHand OS v12.6 or any subsequent version.Show less
CVE-2018-0119 1Cisco 1Conference Director Nov 21, 2024 Feb 8, 2018 N/A· v4 4.7 MEDIUM· v3 6.5 MEDIUM· v2 A vulnerability in certain authentication controls in the account services of Cisco Spark could allow an authenticated, remote attacker to interact with and view information on an affected device that would normally be p...Show more A vulnerability in certain authentication controls in the account services of Cisco Spark could allow an authenticated, remote attacker to interact with and view information on an affected device that would normally be prohibited. The vulnerability is due to the improper display of user-account tokens generated in the system. An attacker could exploit this vulnerability by logging in to the device with a token in use by another account. Successful exploitation could allow the attacker to cause a partial impact to the device's confidentiality, integrity, and availability. Cisco Bug IDs: CSCvg05206.Show less
CVE-2014-5279 1Boot2docker 1Boot2docker Nov 21, 2024 Feb 6, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 The Docker daemon managed by boot2docker 1.2 and earlier improperly enables unauthenticated TCP connections by default, which makes it easier for remote attackers to gain privileges or execute arbitrary code from childre...Show more The Docker daemon managed by boot2docker 1.2 and earlier improperly enables unauthenticated TCP connections by default, which makes it easier for remote attackers to gain privileges or execute arbitrary code from children containers.Show less
CVE-2016-0342 1Ibm 1Tririga Application Platform Nov 21, 2024 Feb 2, 2018 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to read or modify arbitrary reports by leveraging an incorrect grant of access. IBM X-Forc...Show more IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to read or modify arbitrary reports by leveraging an incorrect grant of access. IBM X-Force ID: 111783.Show less
CVE-2017-18035 1Atlassian 2Crucible Fisheye Nov 21, 2024 Feb 2, 2018 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 The /rest/review-coverage-chart/1.0/data/<repository_name>/.json resource in Atlassian Fisheye and Crucible before version 4.5.1 and 4.6.0 was missing a permissions check, this allows remote attackers who do not have acc...Show more The /rest/review-coverage-chart/1.0/data/<repository_name>/.json resource in Atlassian Fisheye and Crucible before version 4.5.1 and 4.6.0 was missing a permissions check, this allows remote attackers who do not have access to a particular repository to determine its existence and access review coverage statistics for it.Show less
CVE-2014-9504 1Open Atrium Project 1Open Atrium Nov 21, 2024 Feb 1, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The OG Subgroups module, when used with the Open Atrium module 7.x-2.x before 7.x-2.26 for Drupal, allows remote attackers to access child groups via vectors related to membership inheritance.
CVE-2014-3519 1Openvz 1Vzkernel Nov 21, 2024 Feb 1, 2018 N/A· v4 6.5 MEDIUM· v3 4.9 MEDIUM· v2 The open_by_handle_at function in vzkernel before 042stab090.5 in the OpenVZ modification for the Linux kernel 2.6.32, when using simfs, might allow local container users with CAP_DAC_READ_SEARCH capability to bypass an...Show more The open_by_handle_at function in vzkernel before 042stab090.5 in the OpenVZ modification for the Linux kernel 2.6.32, when using simfs, might allow local container users with CAP_DAC_READ_SEARCH capability to bypass an intended container protection mechanism and access arbitrary files on a filesystem via vectors related to use of the file_handle structure.Show less
CVE-2016-6598 1Bmc 1Track It! Nov 21, 2024 Jan 30, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 BMC Track-It! 11.4 before Hotfix 3 exposes an unauthenticated .NET remoting file storage service (FileStorageService) on port 9010. This service contains a method that allows uploading a file to an arbitrary path on the...Show more BMC Track-It! 11.4 before Hotfix 3 exposes an unauthenticated .NET remoting file storage service (FileStorageService) on port 9010. This service contains a method that allows uploading a file to an arbitrary path on the machine that is running Track-It!. This can be used to upload a file to the web root and achieve code execution as NETWORK SERVICE or SYSTEM.Show less
CVE-2017-9513 1Atlassian 1Activity Streams Nov 21, 2024 Jan 29, 2018 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 Several rest inline action resources of Atlassian Activity Streams before version 6.3.0 allows remote authenticated attackers to watch any Confluence page & receive notifications when comments are added to the watched pa...Show more Several rest inline action resources of Atlassian Activity Streams before version 6.3.0 allows remote authenticated attackers to watch any Confluence page & receive notifications when comments are added to the watched page, and vote & watch JIRA issues that they do not have access to, although they will not receive notifications for the issue, via missing permission checks.Show less
CVE-2015-3888 1Jolla 1Sailfish Os Nov 21, 2024 Jan 12, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Jolla Sailfish OS before 1.1.2.16 allows remote attackers to spoof phone numbers and trigger calls to arbitrary numbers via spaces in a tel: URL.
CVE-2016-9722 1Ibm 1Qradar Security Information And Event Manager Nov 21, 2024 Jan 10, 2018 N/A· v4 4.2 MEDIUM· v3 4.9 MEDIUM· v2 IBM QRadar 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 119737.
CVE-2017-15131 2Freedesktop Redhat 2Enterprise Linux Xdg User Dirs Nov 21, 2024 Jan 9, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 It was found that system umask policy is not being honored when creating XDG user directories, since Xsession sources xdg-user-dirs.sh before setting umask policy. This only affects xdg-user-dirs before 0.15.5 as shipped...Show more It was found that system umask policy is not being honored when creating XDG user directories, since Xsession sources xdg-user-dirs.sh before setting umask policy. This only affects xdg-user-dirs before 0.15.5 as shipped with Red Hat Enterprise Linux.Show less
CVE-2015-8008 2Fedoraproject Mediawiki 2Fedora Mediawiki May 13, 2026 Dec 29, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The OAuth extension for MediaWiki improperly negotiates a new client token only over Special:OAuth/initiate, which allows attackers to bypass intended IP address access restrictions by making an API request with an exist...Show more The OAuth extension for MediaWiki improperly negotiates a new client token only over Special:OAuth/initiate, which allows attackers to bypass intended IP address access restrictions by making an API request with an existing token.Show less
CVE-2015-3302 1Thecartpress 1Thecartpress Ecommerce Shopping Cart May 13, 2026 Dec 29, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress before 1.3.9.3 allows remote attackers to obtain sensitive order detail information by leveraging a "broken...Show more The TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress before 1.3.9.3 allows remote attackers to obtain sensitive order detail information by leveraging a "broken authentication mechanism."Show less
CVE-2017-16766 1Synology 1Diskstation Manager May 13, 2026 Dec 22, 2017 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM) before 6.1.4-15217 and before 6.0.3-8754-6 allows local users to inject arbitrary web script or HTML via the -fn option.
CVE-2017-5254 1Cambiumnetworks 2Epmp 1000 Firmware Epmp 2000 Firmware May 13, 2026 Dec 20, 2017 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 In version 3.5 and prior of Cambium Networks ePMP firmware, the non-administrative users 'installer' and 'home' have the capability of changing passwords for other accounts, including admin, after disabling a client-side...Show more In version 3.5 and prior of Cambium Networks ePMP firmware, the non-administrative users 'installer' and 'home' have the capability of changing passwords for other accounts, including admin, after disabling a client-side protection mechanism.Show less

Previous 1...210211212...254 Next