Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

CVEs (2,983)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-9488 1Google 1Android Nov 21, 2024 Nov 6, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In the SELinux permissions of crash_dump.te, there is a permissions bypass due to a missing restriction. This could lead to a local escalation of privilege, with System privileges needed. User interaction is not needed f...Show more In the SELinux permissions of crash_dump.te, there is a permissions bypass due to a missing restriction. This could lead to a local escalation of privilege, with System privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0 Android-8.1 Android-9.0 Android ID: A-110107376.Show less
CVE-2018-14665 4Canonical DebianRedhat+1 more 9Debian Linux Enterprise Linux DesktopEnterprise Linux Server+6 more Aug 29, 2025 Oct 25, 2018 N/A· v4 6.6 MEDIUM· v3 7.2 HIGH· v2 A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via ph...Show more A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.Show less
CVE-2018-12369 2Canonical Mozilla 2Firefox Ubuntu Linux Nov 25, 2025 Oct 18, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects Firefox ESR < 60.1 a...Show more WebExtensions bundled with embedded experiments were not correctly checked for proper authorization. This allowed a malicious WebExtension to gain full browser permissions. This vulnerability affects Firefox ESR < 60.1 and Firefox < 61.Show less
CVE-2018-17857 1Joomla 1Joomla Nov 21, 2024 Oct 9, 2018 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An issue was discovered in Joomla! before 3.8.13. Inadequate checks on the tags search fields can lead to an access level violation.
CVE-2018-1000805 4Canonical DebianParamiko+1 more 11Ansible Tower Debian LinuxEnterprise Linux Desktop+8 more Nov 21, 2024 Oct 8, 2018 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack appear to be exploitable via network connectivity.
CVE-2018-15405 1Cisco 1Ucs Director Nov 21, 2024 Oct 5, 2018 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 A vulnerability in the web interface for specific feature sets of Cisco Integrated Management Controller (IMC) Supervisor and Cisco UCS Director could allow an authenticated, remote attacker to access sensitive informati...Show more A vulnerability in the web interface for specific feature sets of Cisco Integrated Management Controller (IMC) Supervisor and Cisco UCS Director could allow an authenticated, remote attacker to access sensitive information. The vulnerability is due to an authorization check that does not properly include the access level of the web interface user. An attacker who has valid application credentials could exploit this vulnerability by sending a crafted HTTP request to the web interface. A successful exploit could allow the attacker to view sensitive information that belongs to other users. The attacker could then use this information to conduct additional reconnaissance attacks.Show less
CVE-2018-0460 1Cisco 1Network Functions Virtualization Infrastructure Nov 21, 2024 Oct 5, 2018 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 A vulnerability in the REST API of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to read any file on an affected system. The vulnerability is due to insufficient autho...Show more A vulnerability in the REST API of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to read any file on an affected system. The vulnerability is due to insufficient authorization and parameter validation checks. An attacker could exploit this vulnerability by sending a malicious API request with the authentication credentials of a low-privileged user. A successful exploit could allow the attacker to read any file on the affected system.Show less
CVE-2018-0459 1Cisco 1Network Functions Virtualization Infrastructure Nov 21, 2024 Oct 5, 2018 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to cause an affected system to reboot or shut down. The vulnerab...Show more A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to cause an affected system to reboot or shut down. The vulnerability is due to insufficient server-side authorization checks. An attacker who is logged in to the web-based management interface as a low-privileged user could exploit this vulnerability by sending a crafted HTTP request. A successful exploit could allow the attacker to use the low-privileged user account to reboot or shut down the affected system.Show less
CVE-2018-9492 1Google 1Android Nov 21, 2024 Oct 2, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction i...Show more In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0 Android-8.1 Android-9.0 Android ID: A-111934948Show less
CVE-2018-1250 1Dell 2Emc Unity Firmware Emc Unityvsa Nov 21, 2024 Sep 28, 2018 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains an Authorization Bypass vulnerability. A remote authenticated user could potentially exploit this vulnerability to read files in NAS server by direc...Show more Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains an Authorization Bypass vulnerability. A remote authenticated user could potentially exploit this vulnerability to read files in NAS server by directly interacting with certain APIs of Unity OE, bypassing Role-Based Authorization control implemented only in Unisphere GUI.Show less
CVE-2018-16597 3Linux NetappOpensuse 4Active Iq Performance Analytics Services Element SoftwareLeap+1 more Nov 21, 2024 Sep 21, 2018 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 4.8. Incorrect access checking in overlayfs mounts could be used by local attackers to modify or truncate files in the underlying filesystem.
CVE-2018-7929 1Huawei 1Mate Rs Firmware Nov 21, 2024 Sep 18, 2018 N/A· v4 6.8 MEDIUM· v3 4.6 MEDIUM· v2 Huawei Mate RS smartphones with the versions before NEO-AL00D 8.1.0.167(C786) have a lock-screen bypass vulnerability. An attacker could unlock and use the phone through certain operations.
CVE-2018-1999047 1Jenkins 1Jenkins Nov 21, 2024 Aug 23, 2018 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 A improper authorization vulnerability exists in Jenkins 2.137 and earlier, 2.121.2 and earlier in UpdateCenter.java that allows attackers to cancel a Jenkins restart scheduled through the update center.
CVE-2018-15468 1Xen 1Xen Nov 21, 2024 Aug 17, 2018 N/A· v4 6.0 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in Xen through 4.11.x. The DEBUGCTL MSR contains several debugging features, some of which virtualise cleanly, but some do not. In particular, Branch Trace Store is not virtualised by the processo...Show more An issue was discovered in Xen through 4.11.x. The DEBUGCTL MSR contains several debugging features, some of which virtualise cleanly, but some do not. In particular, Branch Trace Store is not virtualised by the processor, and software has to be careful to configure it suitably not to lock up the core. As a result, it must only be available to fully trusted guests. Unfortunately, in the case that vPMU is disabled, all value checking was skipped, allowing the guest to choose any MSR_DEBUGCTL setting it likes. A malicious or buggy guest administrator (on Intel x86 HVM or PVH) can lock up the entire host, causing a Denial of Service.Show less
CVE-2018-10925 3Canonical DebianPostgresql 3Debian Linux PostgresqlUbuntu Linux Nov 21, 2024 Aug 9, 2018 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on certain statements involved with "INSERT ... ON CONFLICT DO UPDATE". An attacker with "...Show more It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on certain statements involved with "INSERT ... ON CONFLICT DO UPDATE". An attacker with "CREATE TABLE" privileges could exploit this to read arbitrary bytes server memory. If the attacker also had certain "INSERT" and limited "UPDATE" privileges to a particular table, they could exploit this to update other columns in the same table.Show less
CVE-2018-3778 1Aedes Project 1Aedes Nov 21, 2024 Aug 8, 2018 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Improper authorization in aedes version <0.35.0 will publish a LWT in a channel when a client is not authorized.
CVE-2018-5489 1Netapp 17 Mode Transition Tool Nov 21, 2024 Aug 3, 2018 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 NetApp 7-Mode Transition Tool allows users with valid credentials to access functions and information which may have been intended to be restricted to administrators or privileged users. 7MTT versions below 2.0 do not en...Show more NetApp 7-Mode Transition Tool allows users with valid credentials to access functions and information which may have been intended to be restricted to administrators or privileged users. 7MTT versions below 2.0 do not enforce user authorization rules on file information and status that it has previously collected. The released version of 7MTT has been updated to maintain and verify authorization rules for file information, status and utilities.Show less
CVE-2018-7957 1Huawei 1Victoria Al00 Firmware Nov 21, 2024 Jul 31, 2018 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage vulnerability. Because an interface does not verify authorization correctly, attackers can exploit an application with the author...Show more Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage vulnerability. Because an interface does not verify authorization correctly, attackers can exploit an application with the authorization of phone state to obtain user location additionally.Show less
CVE-2017-17708 1Pleasantsolutions 1Pleasant Password Server Nov 21, 2024 Jul 31, 2018 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Because of insufficient authorization checks it is possible for any authenticated user to change profile data of other users in Pleasant Password Server before 7.8.3.
CVE-2017-2632 1Redhat 2Cloudforms Cloudforms Management Engine Nov 21, 2024 Jul 27, 2018 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 A logic error in valid_role() in CloudForms role validation before 5.7.1.3 could allow a tenant administrator to create groups with a higher privilege level than the tenant administrator should have. This would allow an...Show more A logic error in valid_role() in CloudForms role validation before 5.7.1.3 could allow a tenant administrator to create groups with a higher privilege level than the tenant administrator should have. This would allow an attacker with tenant administration access to elevate privileges.Show less

Previous 1...142143144...150 Next