Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

CVEs (3,038)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-22966 1Concretecms 1Concrete Cms Nov 21, 2024 Nov 19, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Privilege escalation from Editor to Admin using Groups in Concrete CMS versions 8.5.6 and below. If a group is granted "view" permissions on the bulkupdate page, then users in that group can escalate to being an administ...Show more Privilege escalation from Editor to Admin using Groups in Concrete CMS versions 8.5.6 and below. If a group is granted "view" permissions on the bulkupdate page, then users in that group can escalate to being an administrator with a specially crafted curl. Fixed by adding a check for group permissions before allowing a group to be moved. Concrete CMS Security team CVSS scoring: 7.1 AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:HCredit for discovery: "Adrian Tiron from FORTBRIDGE ( https://www.fortbridge.co.uk/ )"This fix is also in Concrete version 9.0.0Show less
CVE-2021-39234 1Apache 1Ozone Nov 21, 2024 Nov 19, 2021 N/A· v4 6.8 MEDIUM· v3 4.9 MEDIUM· v2 In Apache Ozone versions prior to 1.2.0, Authenticated users knowing the ID of an existing block can craft specific request allowing access those blocks, bypassing other security checks like ACL.
CVE-2021-43553 1Osisoft 1Pi Vision Nov 21, 2024 Nov 17, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 PI Vision could disclose information to a user with insufficient privileges for an AF attribute that is the child of another attribute and is configured as a Limits property.
CVE-2021-24851 1Insert Pages Project 1Insert Pages Nov 21, 2024 Nov 17, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 The Insert Pages WordPress plugin before 3.7.0 allows users with a role as low as Contributor to access content and metadata from arbitrary posts/pages regardless of their author and status (ie private), using a shortcod...Show more The Insert Pages WordPress plugin before 3.7.0 allows users with a role as low as Contributor to access content and metadata from arbitrary posts/pages regardless of their author and status (ie private), using a shortcode. Password protected posts/pages are not affected by such issue.Show less
CVE-2021-41244 1Grafana 1Grafana Nov 21, 2024 Nov 15, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Grafana is an open-source platform for monitoring and observability. In affected versions when the fine-grained access control beta feature is enabled and there is more than one organization in the Grafana instance admin...Show more Grafana is an open-source platform for monitoring and observability. In affected versions when the fine-grained access control beta feature is enabled and there is more than one organization in the Grafana instance admins are able to access users from other organizations. Grafana 8.0 introduced a mechanism which allowed users with the Organization Admin role to list, add, remove, and update users’ roles in other organizations in which they are not an admin. With fine-grained access control enabled, organization admins can list, add, remove and update users' roles in another organization, where they do not have organization admin role. All installations between v8.0 and v8.2.3 that have fine-grained access control beta enabled and more than one organization should be upgraded as soon as possible. If you cannot upgrade, you should turn off the fine-grained access control using a feature flag.Show less
CVE-2021-3577 1Binatoneglobal 21Cn28 Firmware Cn40 FirmwareCn50 Firmware+18 more Nov 21, 2024 Nov 12, 2021 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 An unauthenticated remote code execution vulnerability was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker on the same network unauthorized access to the device.
CVE-2021-1903 1Qualcomm 206Aqt1000 Firmware Ar8031 FirmwareAr8035 Firmware+203 more Nov 21, 2024 Nov 12, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Co...Show more Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and NetworkingShow less
CVE-2021-40504 1Sap 1Netweaver Application Server Abap Nov 21, 2024 Nov 10, 2021 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 A certain template role in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, contains transport authorizations, which exceed...Show more A certain template role in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, contains transport authorizations, which exceed expected display only permissions.Show less
CVE-2021-20119 1Commscope 1Arris Surfboard Sb8200 Firmware Nov 21, 2024 Nov 9, 2021 N/A· v4 7.1 HIGH· v3 4.9 MEDIUM· v2 The password change utility for the Arris SurfBoard SB8200 can have safety measures bypassed that allow any logged-in user to change the administrator password.
CVE-2021-42026 1Mendix 1Mendix Nov 21, 2024 Nov 9, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 A vulnerability has been identified in Mendix Applications using Mendix 8 (All versions < V8.18.13), Mendix Applications using Mendix 9 (All versions < V9.6.2). Applications built with affected versions of Mendix Studio...Show more A vulnerability has been identified in Mendix Applications using Mendix 8 (All versions < V8.18.13), Mendix Applications using Mendix 9 (All versions < V9.6.2). Applications built with affected versions of Mendix Studio Pro do not properly control read access for certain client actions. This could allow authenticated attackers to retrieve the changedDate attribute of arbitrary objects, even when they don't have read access to them.Show less
CVE-2021-42025 1Mendix 1Mendix Nov 21, 2024 Nov 9, 2021 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 A vulnerability has been identified in Mendix Applications using Mendix 8 (All versions < V8.18.13), Mendix Applications using Mendix 9 (All versions < V9.6.2). Applications built with affected versions of Mendix Studio...Show more A vulnerability has been identified in Mendix Applications using Mendix 8 (All versions < V8.18.13), Mendix Applications using Mendix 9 (All versions < V9.6.2). Applications built with affected versions of Mendix Studio Pro do not properly control write access for certain client actions. This could allow authenticated attackers to manipulate the content of System.FileDocument objects in some cases, regardless whether they have write access to it.Show less
CVE-2021-24788 1Batch Cat Project 1Batch Cat Nov 21, 2024 Nov 8, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 The Batch Cat WordPress plugin through 0.3 defines 3 custom AJAX actions, which both require authentication but are available for all roles. As a result, any authenticated user (including simple subscribers) can add/set/...Show more The Batch Cat WordPress plugin through 0.3 defines 3 custom AJAX actions, which both require authentication but are available for all roles. As a result, any authenticated user (including simple subscribers) can add/set/delete arbitrary categories to posts.Show less
CVE-2021-24783 1Publishpress 1Post Expirator Nov 21, 2024 Nov 8, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 The Post Expirator WordPress plugin before 2.6.0 does not have proper capability checks in place, which could allow users with a role as low as Contributor to schedule deletion of arbitrary posts.
CVE-2021-22051 1Vmware 1Spring Cloud Gateway Nov 21, 2024 Nov 8, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Applications using Spring Cloud Gateway are vulnerable to specifically crafted requests that could make an extra request on downstream services. Users of affected versions should apply the following mitigation: 3.0.x use...Show more Applications using Spring Cloud Gateway are vulnerable to specifically crafted requests that could make an extra request on downstream services. Users of affected versions should apply the following mitigation: 3.0.x users should upgrade to 3.0.5+, 2.2.x users should upgrade to 2.2.10.RELEASE or newer.Show less
CVE-2021-41230 1Pomerium 1Pomerium Nov 21, 2024 Nov 5, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Pomerium is an open source identity-aware access proxy. In affected versions changes to the OIDC claims of a user after initial login are not reflected in policy evaluation when using `allowed_idp_claims` as part of poli...Show more Pomerium is an open source identity-aware access proxy. In affected versions changes to the OIDC claims of a user after initial login are not reflected in policy evaluation when using `allowed_idp_claims` as part of policy. If using `allowed_idp_claims` and a user's claims are changed, Pomerium can make incorrect authorization decisions. This issue has been resolved in v0.15.6. For users unable to upgrade clear data on `databroker` service by clearing redis or restarting the in-memory databroker to force claims to be updated.Show less
CVE-2021-25506 1Samsung 1Health Nov 21, 2024 Nov 5, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Non-existent provider in Samsung Health prior to 6.19.1.0001 allows attacker to access it via malicious content provider or lead to denial of service.
CVE-2021-39904 1Gitlab 1Gitlab Jun 12, 2026 Nov 5, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An Improper Access Control vulnerability in the GraphQL API in all versions of GitLab CE/EE starting from 13.1 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before 14.4...Show more An Improper Access Control vulnerability in the GraphQL API in all versions of GitLab CE/EE starting from 13.1 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before 14.4.1 allows a Merge Request creator to resolve discussions and apply suggestions after a project owner has locked the Merge RequestShow less
CVE-2021-39902 1Gitlab 1Gitlab Nov 21, 2024 Nov 4, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Incorrect Authorization in GitLab CE/EE 13.4 or above allows a user with guest membership in a project to modify the severity of an incident.
CVE-2021-21693 1Jenkins 1Jenkins Nov 21, 2024 Nov 4, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 When creating temporary files, agent-to-controller access to create those files is only checked after they've been created in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.
CVE-2021-39341 1Optinmonster 1Optinmonster Nov 21, 2024 Nov 1, 2021 N/A· v4 8.2 HIGH· v3 6.4 MEDIUM· v2 The OptinMonster WordPress plugin is vulnerable to sensitive information disclosure and unauthorized setting updates due to insufficient authorization validation via the logged_in_or_has_api_key function in the ~/OMAPI/R...Show more The OptinMonster WordPress plugin is vulnerable to sensitive information disclosure and unauthorized setting updates due to insufficient authorization validation via the logged_in_or_has_api_key function in the ~/OMAPI/RestApi.php file that can used to exploit inject malicious web scripts on sites with the plugin installed. This affects versions up to, and including, 2.6.4.Show less

Previous 1...115116117...152 Next