Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

CVEs (3,038)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-28634 1Glpi Project 1Glpi Nov 21, 2024 Apr 5, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 GLPI is a free asset and IT management software package. Starting in version 0.83 and prior to versions 9.5.13 and 10.0.7, a user who has the Technician profile could see and generate a Personal token for a Super-Admin....Show more GLPI is a free asset and IT management software package. Starting in version 0.83 and prior to versions 9.5.13 and 10.0.7, a user who has the Technician profile could see and generate a Personal token for a Super-Admin. Using such token it is possible to negotiate a GLPI session and hijack the Super-Admin account, resulting in a Privilege Escalation. Versions 9.5.13 and 10.0.7 contain a patch for this issue.Show less
CVE-2022-43940 1Hitachi 1Vantara Pentaho Business Analytics Server Nov 21, 2024 Apr 3, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.2, including 8.3.x do not correctly perform an authorization check in the data source management service.
CVE-2023-1603 1Devolutions 1Devolutions Server Feb 25, 2025 Apr 2, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Permission bypass when importing or synchronizing entries in User vault in Devolutions Server 2022.3.13 and prior versions allows users with restricted rights to bypass entry permission via id collision.
CVE-2023-1202 1Devolutions 1Remote Desktop Manager Feb 20, 2025 Apr 2, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Permission bypass when importing or synchronizing entries in User vault in Devolutions Remote Desktop Manager 2023.1.9 and prior versions allows users with restricted rights to bypass entry permission via id collision.
CVE-2023-23594 1Sato Global 1Cl4nx Plus Firmware Feb 18, 2025 Mar 31, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An authentication bypass vulnerability in the web client interface for the CL4NX printer before firmware version 1.13.3-u724_r2 provides remote unauthenticated attackers with access to execute commands intended only for...Show more An authentication bypass vulnerability in the web client interface for the CL4NX printer before firmware version 1.13.3-u724_r2 provides remote unauthenticated attackers with access to execute commands intended only for valid/authenticated users, such as file uploads and configuration changes.Show less
CVE-2023-26829 1Gladinet 1Centrestack Feb 18, 2025 Mar 31, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An authentication bypass vulnerability in the Password Reset component of Gladinet CentreStack before 13.5.9808 allows remote attackers to set a new password for any valid user account, without needing the previous known...Show more An authentication bypass vulnerability in the Password Reset component of Gladinet CentreStack before 13.5.9808 allows remote attackers to set a new password for any valid user account, without needing the previous known password, resulting in a full authentication bypass.Show less
CVE-2022-27642 1Netgear 33Cax80 Firmware Lax20 FirmwareMr60 Firmware+30 more Nov 21, 2024 Mar 29, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The spec...Show more This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service. The issue results from incorrect string matching logic when accessing protected pages. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of root. Was ZDI-CAN-15854.Show less
CVE-2023-22251 1Adobe 2Commerce Magento Open Source Nov 21, 2024 Mar 27, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Adobe Commerce versions 2.4.4-p2 (and earlier) and 2.4.5-p1 (and earlier) are affected by an Incorrect Authorization vulnerability. A low-privileged authenticated attacker could leverage this vulnerability to achieve min...Show more Adobe Commerce versions 2.4.4-p2 (and earlier) and 2.4.5-p1 (and earlier) are affected by an Incorrect Authorization vulnerability. A low-privileged authenticated attacker could leverage this vulnerability to achieve minor information disclosure.Show less
CVE-2023-1144 1Deltaww 1Infrasuite Device Master Nov 21, 2024 Mar 27, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contains an improper access control vulnerability in which an attacker can use the Device-Gateway service and bypass authorization, which could result in...Show more Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contains an improper access control vulnerability in which an attacker can use the Device-Gateway service and bypass authorization, which could result in privilege escalation.Show less
CVE-2023-1136 1Deltaww 1Infrasuite Device Master Nov 21, 2024 Mar 27, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 In Delta Electronics InfraSuite Device Master versions prior to 1.0.5, an unauthenticated attacker could generate a valid token, which would lead to authentication bypass.
CVE-2023-25017 1Rifartek 1Iot Wall Nov 21, 2024 Mar 27, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 RIFARTEK IOT Wall has a vulnerability of incorrect authorization. An authenticated remote attacker with general user privilege is allowed to perform specific privileged function to access and modify all sensitive data.
CVE-2023-21035 1Google 1Android Feb 25, 2025 Mar 24, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In multiple functions of BackupHelper.java, there is a possible way for an app to get permissions previously granted to another app with the same package name due to a permissions bypass. This could lead to local escalat...Show more In multiple functions of BackupHelper.java, there is a possible way for an app to get permissions previously granted to another app with the same package name due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-184847040Show less
CVE-2023-21034 1Google 1Android Feb 26, 2025 Mar 24, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In multiple functions of SensorService.cpp, there is a possible access of accurate sensor data due to a permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User int...Show more In multiple functions of SensorService.cpp, there is a possible access of accurate sensor data due to a permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-230358834Show less
CVE-2023-20975 1Google 1Android Feb 25, 2025 Mar 24, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In getAvailabilityStatus of EnableContentCapturePreferenceController.java, there is a possible way to bypass DISALLOW_CONTENT_CAPTURE due to a permissions bypass. This could lead to local escalation of privilege with no...Show more In getAvailabilityStatus of EnableContentCapturePreferenceController.java, there is a possible way to bypass DISALLOW_CONTENT_CAPTURE due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-250573776Show less
CVE-2023-20971 1Google 1Android Feb 25, 2025 Mar 24, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In removePermission of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerous permissions without user consent due to a logic error in the code. This could lead to local escalation of privilege wi...Show more In removePermission of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerous permissions without user consent due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2023-28611 1Omicronenergy 2Stationguard Stationscout Feb 25, 2025 Mar 23, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Incorrect authorization in OMICRON StationGuard 1.10 through 2.20 and StationScout 1.30 through 2.20 allows an attacker to bypass intended access restrictions.
CVE-2023-23192 1Isdecisions 1Userlock Nov 21, 2024 Mar 23, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 IS Decisions UserLock MFA 11.01 is vulnerable to authentication bypass using scheduled task.
CVE-2023-25924 1Ibm 1Security Key Lifecycle Manager Nov 21, 2024 Mar 22, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow an authenticated user to perform actions that they should not have access to due to improper authorization. IBM X-Force ID: 247630...Show more IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow an authenticated user to perform actions that they should not have access to due to improper authorization. IBM X-Force ID: 247630.Show less
CVE-2023-25594 1Arubanetworks 1Clearpass Policy Manager Feb 27, 2025 Mar 22, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A vulnerability in the web-based management interface of ClearPass Policy Manager allows an attacker with read-only privileges to perform actions that change the state of the ClearPass Policy Manager instance. Successfu...Show more A vulnerability in the web-based management interface of ClearPass Policy Manager allows an attacker with read-only privileges to perform actions that change the state of the ClearPass Policy Manager instance. Successful exploitation of this vulnerability allows an attacker to complete state-changing actions in the web-based management interface that should not be allowed by their current level of authorization on the platform.Show less
CVE-2023-25923 1Ibm 1Security Key Lifecycle Manager Nov 21, 2024 Mar 21, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow an attacker to upload files that could be used in a denial of service attack due to incorrect authorization. IBM X-Force ID: 24762...Show more IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow an attacker to upload files that could be used in a denial of service attack due to incorrect authorization. IBM X-Force ID: 247629.Show less

Previous 1...959697...152 Next