Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

CVEs (3,038)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-9378 1Bigtreecms 1Bigtree Cms May 13, 2026 Jun 2, 2017 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 BigTree CMS through 4.2.18 does not prevent a user from deleting their own account. This could have security relevance because deletion was supposed to be an admin-only action, and the admin may have other tasks (such as...Show more BigTree CMS through 4.2.18 does not prevent a user from deleting their own account. This could have security relevance because deletion was supposed to be an admin-only action, and the admin may have other tasks (such as data backups) to complete before a user is deleted.Show less
CVE-2017-2306 1Juniper 1Junos Space May 13, 2026 May 30, 2017 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can execute code on the device.
CVE-2017-2305 1Juniper 1Junos Space May 13, 2026 May 30, 2017 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allowing privilege escalat...Show more On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allowing privilege escalation.Show less
CVE-2017-7505 1Theforeman 1Foreman May 13, 2026 May 26, 2017 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Foreman since version 1.5 is vulnerable to an incorrect authorization check due to which users with user management permission who are assigned to some organization(s) can do all operations granted by these permissions o...Show more Foreman since version 1.5 is vulnerable to an incorrect authorization check due to which users with user management permission who are assigned to some organization(s) can do all operations granted by these permissions on all administrator user object outside of their scope, such as editing global admin accounts including changing their passwords.Show less
CVE-2017-4915 1Vmware 2Workstation Player Workstation Pro May 13, 2026 May 22, 2017 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driver configuration files. Successful exploitation of this issue may allow unprivileged host users to escalate their privil...Show more VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driver configuration files. Successful exploitation of this issue may allow unprivileged host users to escalate their privileges to root in a Linux host machine.Show less
CVE-2017-0894 1Nextcloud 1Nextcloud Server May 13, 2026 May 8, 2017 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Nextcloud Server before 11.0.3 is vulnerable to disclosure of valid share tokens for public calendars due to a logical error. Thus granting an attacker potentially access to publicly shared calendars without knowing the...Show more Nextcloud Server before 11.0.3 is vulnerable to disclosure of valid share tokens for public calendars due to a logical error. Thus granting an attacker potentially access to publicly shared calendars without knowing the share token.Show less
CVE-2017-3817 1Cisco 1Unified Computing System Director May 13, 2026 Apr 7, 2017 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 A vulnerability in the role-based resource checking functionality of Cisco Unified Computing System (UCS) Director could allow an authenticated, remote attacker to view unauthorized information for any virtual machine in...Show more A vulnerability in the role-based resource checking functionality of Cisco Unified Computing System (UCS) Director could allow an authenticated, remote attacker to view unauthorized information for any virtual machine in a UCS domain. More Information: CSCvc32434. Known Affected Releases: 5.5(0.1) 6.0(0.0).Show less
CVE-2017-0881 1Zulip 1Zulip Server May 13, 2026 Mar 28, 2017 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An error in the implementation of an autosubscribe feature in the check_stream_exists route of the Zulip group chat application server before 1.4.3 allowed an authenticated user to subscribe to a private stream that shou...Show more An error in the implementation of an autosubscribe feature in the check_stream_exists route of the Zulip group chat application server before 1.4.3 allowed an authenticated user to subscribe to a private stream that should have required an invitation from an existing member to join. The issue affects all previously released versions of the Zulip server.Show less
CVE-2017-5618 1Gnu 1Screen May 13, 2026 Mar 20, 2017 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 GNU screen before 4.5.1 allows local users to modify arbitrary files and consequently gain root privileges by leveraging improper checking of logfile permissions.
CVE-2017-6377 1Drupal 1Drupal May 13, 2026 Mar 16, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 When adding a private file via the editor in Drupal 8.2.x before 8.2.7, the editor will not correctly check access for the file being attached, resulting in an access bypass.
CVE-2017-6816 2Debian Wordpress 2Debian Linux Wordpress May 13, 2026 Mar 12, 2017 N/A· v4 4.9 MEDIUM· v3 5.5 MEDIUM· v2 In WordPress before 4.7.3 (wp-admin/plugins.php), unintended files can be deleted by administrators using the plugin deletion functionality.
CVE-2017-6590 1Canonical 1Ubuntu Linux May 13, 2026 Mar 9, 2017 N/A· v4 6.3 MEDIUM· v3 6.9 MEDIUM· v2 An issue was discovered in network-manager-applet (aka network-manager-gnome) in Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, and 16.10. A local attacker could use this issue at the default Ubuntu login screen to access local...Show more An issue was discovered in network-manager-applet (aka network-manager-gnome) in Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, and 16.10. A local attacker could use this issue at the default Ubuntu login screen to access local files and execute arbitrary commands as the lightdm user. The exploitation requires physical access to the locked computer and the Wi-Fi must be turned on. An access point that lets you use a certificate to login is required as well, but it's easy to create one. Then, it's possible to open a nautilus window and browse directories. One also can open some applications such as Firefox, which is useful for downloading malicious binaries.Show less
CVE-2017-3801 1Cisco 1Unified Computing System Director May 13, 2026 Feb 15, 2017 N/A· v4 8.8 HIGH· v3 4.6 MEDIUM· v2 A vulnerability in the web-based GUI of Cisco UCS Director 6.0.0.0 and 6.0.0.1 could allow an authenticated, local attacker to execute arbitrary workflow items with just an end-user profile, a Privilege Escalation Vulner...Show more A vulnerability in the web-based GUI of Cisco UCS Director 6.0.0.0 and 6.0.0.1 could allow an authenticated, local attacker to execute arbitrary workflow items with just an end-user profile, a Privilege Escalation Vulnerability. The vulnerability is due to improper role-based access control (RBAC) after the Developer Menu is enabled in Cisco UCS Director. An attacker could exploit this vulnerability by enabling Developer Mode for his/her user profile with an end-user profile and then adding new catalogs with arbitrary workflow items to his/her profile. An exploit could allow an attacker to perform any actions defined by these workflow items, including actions affecting other tenants. Cisco Bug IDs: CSCvb64765.Show less
CVE-2016-4178 1Adobe 2Flash Player Flash Player Desktop Runtime May 6, 2026 Jul 13, 2016 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to bypass intended access restrictions and obtain sensitive information v...Show more Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors.Show less
CVE-2016-4514 1Moxa 2Pt 7728 Pt 7728 Firmware May 6, 2026 Jun 19, 2016 N/A· v4 7.7 HIGH· v3 4.6 MEDIUM· v2 Moxa PT-7728 devices with software 3.4 build 15081113 allow remote authenticated users to change the configuration via vectors involving a local proxy.
CVE-2015-4106 6Canonical CitrixDebian+3 more 8Debian Linux FedoraLinux Enterprise Desktop+5 more May 6, 2026 Jun 3, 2015 N/A· v4 N/A· v3 4.6 MEDIUM· v2 QEMU does not properly restrict write access to the PCI config space for certain PCI pass-through devices, which might allow local x86 HVM guests to gain privileges, cause a denial of service (host crash), obtain sensiti...Show more QEMU does not properly restrict write access to the PCI config space for certain PCI pass-through devices, which might allow local x86 HVM guests to gain privileges, cause a denial of service (host crash), obtain sensitive information, or possibly have other unspecified impact via unknown vectors.Show less
CVE-2014-8109 4Apache CanonicalFedoraproject+1 more 4Enterprise Manager Ops Center FedoraHttp Server+1 more May 6, 2026 Dec 29, 2014 N/A· v4 N/A· v3 4.3 MEDIUM· v2 mod_lua.c in the mod_lua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not support an httpd configuration in which the same Lua authorization provider is used with different arguments within differ...Show more mod_lua.c in the mod_lua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not support an httpd configuration in which the same Lua authorization provider is used with different arguments within different contexts, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging multiple Require directives, as demonstrated by a configuration that specifies authorization for one group to access a certain directory, and authorization for a second group to access a second directory.Show less
CVE-2014-3520 1Openstack 1Keystone May 6, 2026 Oct 26, 2014 N/A· v4 N/A· v3 6.5 MEDIUM· v2 OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated trustees to gain access to an unauthorized project for which the trustor has certain roles via the...Show more OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated trustees to gain access to an unauthorized project for which the trustor has certain roles via the project ID in a V2 API trust token request.Show less
CVE-2013-6926 1Siemens 1Ruggedcom Rugged Operating System Apr 29, 2026 Dec 17, 2013 N/A· v4 N/A· v3 8.0 HIGH· v2 The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on administrative actions by leveraging access to a (1) guest or (2) operator account.
CVE-2013-0543 1Ibm 1Websphere Application Server Apr 29, 2026 Apr 24, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 before 8.5.0.2 on Linux, Solaris, and HP-UX, when a Local OS registry is used, does not properly validate user...Show more IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 before 8.5.0.2 on Linux, Solaris, and HP-UX, when a Local OS registry is used, does not properly validate user accounts, which allows remote attackers to bypass intended access restrictions via unspecified vectors.Show less

Previous 1...148 149 150151152 Next