Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

CVEs (2,985)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-1350 1Veraxsystems 1Network Management System Nov 21, 2024 Jan 30, 2020 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 Verax NMS prior to 2.1.0 has multiple security bypass vulnerabilities
CVE-2013-2574 1Foscam 1Fi8620 Firmware Nov 21, 2024 Jan 29, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An Access vulnerability exists in FOSCAM IP Camera FI8620 due to insufficient access restrictions in the /tmpfs/ and /log/ directories, which could let a malicious user obtain sensitive information.
CVE-2020-2104 1Jenkins 1Jenkins Nov 21, 2024 Jan 29, 2020 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Jenkins 2.218 and earlier, LTS 2.204.1 and earlier allowed users with Overall/Read access to view a JVM memory usage chart.
CVE-2020-8086 2Debian Prosody 3Debian Linux Mod Auth LdapMod Auth Ldap2 Nov 21, 2024 Jan 28, 2020 N/A· v4 9.8 CRITICAL· v3 6.8 MEDIUM· v2 The mod_auth_ldap and mod_auth_ldap2 Community Modules through 2020-01-27 for Prosody incompletely verify the XMPP address passed to the is_admin() function. This grants remote entities admin-only functionality if their...Show more The mod_auth_ldap and mod_auth_ldap2 Community Modules through 2020-01-27 for Prosody incompletely verify the XMPP address passed to the is_admin() function. This grants remote entities admin-only functionality if their username matches the username of a local admin.Show less
CVE-2013-4862 1Micasaverde 1Veralite Firmware Nov 21, 2024 Jan 28, 2020 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 MiCasaVerde VeraLite with firmware 1.5.408 does not properly restrict access, which allows remote authenticated users to (1) update the firmware via the squashfs parameter to upgrade_step2.sh or (2) obtain hashed passwor...Show more MiCasaVerde VeraLite with firmware 1.5.408 does not properly restrict access, which allows remote authenticated users to (1) update the firmware via the squashfs parameter to upgrade_step2.sh or (2) obtain hashed passwords via the cgi-bin/cmh/backup.sh page.Show less
CVE-2019-5474 1Gitlab 1Gitlab Nov 21, 2024 Jan 28, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 An authorization issue was discovered in GitLab EE < 12.1.2, < 12.0.4, and < 11.11.6 allowing the merge request approval rules to be overridden without appropriate permissions.
CVE-2019-17190 1Avas!t 1Secure Browser Nov 21, 2024 Jan 27, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A Local Privilege Escalation issue was discovered in Avast Secure Browser 76.0.1659.101. The vulnerability is due to an insecure ACL set by the AvastBrowserUpdate.exe (which is running as NT AUTHORITY\SYSTEM) when AvastS...Show more A Local Privilege Escalation issue was discovered in Avast Secure Browser 76.0.1659.101. The vulnerability is due to an insecure ACL set by the AvastBrowserUpdate.exe (which is running as NT AUTHORITY\SYSTEM) when AvastSecureBrowser.exe checks for new updates. When the update check is triggered, the elevated process cleans the ACL of the Update.ini file in %PROGRAMDATA%\Avast Software\Browser\Update\ and sets all privileges to group Everyone. Because any low-privileged user can create, delete, or modify the Update.ini file stored in this location, an attacker with low privileges can create a hard link named Update.ini in this folder, and make it point to a file writable by NT AUTHORITY\SYSTEM. Once AvastBrowserUpdate.exe is triggered by the update check functionality, the DACL is set to a misconfigured value on the crafted Update.ini and, consequently, to the target file that was previously not writable by the low-privileged attacker.Show less
CVE-2020-2097 1Jenkins 1Sounds Nov 21, 2024 Jan 15, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jen...Show more Jenkins Sounds Plugin 0.5 and earlier does not perform permission checks in URLs performing form validation, allowing attackers with Overall/Read access to execute arbitrary OS commands as the OS user account running Jenkins.Show less
CVE-2020-6307 1Sap 1Basis Nov 21, 2024 Jan 14, 2020 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Automated Note Search Tool (update provided in SAP Basis 7.0, 7.01, 7.02, 7.31, 7.4, 7.5, 7.51, 7.52, 7.53 and 7.54) does not perform sufficient authorization checks leading to the reading of sensitive information.
CVE-2012-3821 1Arialsoftware 1Campaign Enterprise Nov 21, 2024 Jan 10, 2020 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 A Security Bypass vulnerability exists in the activate.asp page in Arial Software Campaign Enterprise 11.0.551, which could let a remote malicious user modify the SerialNumber field.
CVE-2012-3822 1Arialsoftware 1Campaign Enterprise Nov 21, 2024 Jan 10, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Arial Campaign Enterprise before 11.0.551 has unauthorized access to the User-Edit.asp page, which allows remote attackers to enumerate users' credentials.
CVE-2019-17014 1Mozilla 1Firefox Nov 21, 2024 Jan 8, 2020 N/A· v4 7.4 HIGH· v3 4.3 MEDIUM· v2 If an image had not loaded correctly (such as when it is not actually an image), it could be dragged and dropped cross-domain, resulting in a cross-origin information leak. This vulnerability affects Firefox < 71.
CVE-2016-6591 1Symantec 1Norton App Lock Nov 21, 2024 Jan 8, 2020 N/A· v4 7.1 HIGH· v3 3.3 LOW· v2 A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabled, which could let a local malicious user bypass security restrictions.
CVE-2019-14843 1Redhat 2Jboss Enterprise Application Platform Single Sign On Nov 21, 2024 Jan 7, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A flaw was found in Wildfly Security Manager, running under JDK 11 or 8, that authorized requests for any requester. This flaw could be used by a malicious app deployed on the app server to access unauthorized informatio...Show more A flaw was found in Wildfly Security Manager, running under JDK 11 or 8, that authorized requests for any requester. This flaw could be used by a malicious app deployed on the app server to access unauthorized information and possibly conduct further attacks. Versions shipped with Red Hat Jboss EAP 7 and Red Hat SSO 7 are vulnerable to this issue.Show less
CVE-2019-6855 1Schneider Electric 23Ecostruxure Control Expert Modicon M340 Bmxp341000 FirmwareModicon M340 Bmxp342000 Firmware+20 more Nov 21, 2024 Jan 6, 2020 N/A· v4 7.3 HIGH· v3 7.5 HIGH· v2 Incorrect Authorization vulnerability exists in EcoStruxure Control Expert (all versions prior to 14.1 Hot Fix), Unity Pro (all versions), Modicon M340 (all versions prior to V3.20) , and Modicon M580 (all versions prior...Show more Incorrect Authorization vulnerability exists in EcoStruxure Control Expert (all versions prior to 14.1 Hot Fix), Unity Pro (all versions), Modicon M340 (all versions prior to V3.20) , and Modicon M580 (all versions prior to V3.10), which could cause a bypass of the authentication process between EcoStruxure Control Expert and the M340 and M580 controllers.Show less
CVE-2014-0169 1Redhat 1Jboss Enterprise Application Platform Nov 21, 2024 Jan 2, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 In JBoss EAP 6 a security domain is configured to use a cache that is shared between all applications that are in the security domain. This could allow an authenticated user in one application to access protected resourc...Show more In JBoss EAP 6 a security domain is configured to use a cache that is shared between all applications that are in the security domain. This could allow an authenticated user in one application to access protected resources in another application without proper authorization. Although this is an intended functionality, it was not clearly documented which can mislead users into thinking that a security domain cache is isolated to a single application.Show less
CVE-2010-3782 2Obs Server Suse 2Linux Enterprise Server Obs Server Nov 21, 2024 Jan 2, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 obs-server before 1.7.7 allows logins by 'unconfirmed' accounts due to a bug in the REST api implementation.
CVE-2019-20213 1Dlink 14Dir 818lx Firmware Dir 822 FirmwareDir 823 Firmware+11 more Nov 21, 2024 Jan 2, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUTHORIZED_GROUP=1%0a value, as demonstrated by vpnconfig.php.
CVE-2019-12837 1Gencat 1Portal D'acces A La Universitat Nov 21, 2024 Dec 31, 2019 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 The Java API in accesuniversitat.gencat.cat 1.7.5 allows remote attackers to get personal information of all registered students via several API endpoints.
CVE-2018-20498 1Gitlab 1Gitlab Nov 21, 2024 Dec 30, 2019 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An issue was discovered in GitLab Community and Enterprise Edition before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. It has Incorrect Access Control.

Previous 1...134135136...150 Next