VYPR

CWE-863

Incorrect Authorization

ClassIncompleteLikelihood: High

Description

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

Hierarchy (View 1000)

CVEs mapped to this weakness (1,530)

page 30 of 77
  • CVE-2021-40616MedJun 14, 2022
    risk 0.42cvss 6.5epss 0.01

    thinkcmf v5.1.7 has an unauthorized vulnerability. The attacker can modify the password of the administrator account with id 1 through the background user management group permissions. The use condition is that the background user management group authority is required.

  • CVE-2022-31043HigJun 10, 2022
    risk 0.42cvss 7.5epss 0.02

    Guzzle is an open source PHP HTTP client. In affected versions `Authorization` headers on requests are sensitive information. On making a request using the `https` scheme to a server which responds with a redirect to a URI with the `http` scheme, we should not forward the…

  • CVE-2022-29773MedJun 3, 2022
    risk 0.42cvss 6.5epss 0.01

    An access control issue in aleksis/core/util/auth_helpers.py: ClientProtectedResourceMixin of AlekSIS-Core v2.8.1 and below allows attackers to access arbitrary scopes if no allowed scopes are specifically set.

  • CVE-2022-1466MedApr 26, 2022
    risk 0.42cvss 6.5epss 0.01

    Due to improper authorization, Red Hat Single Sign-On is vulnerable to users performing actions that they should not be allowed to perform. It was possible to add users to the master realm even though no respective permission was granted.

  • CVE-2021-37517HigMar 31, 2022
    risk 0.42cvss 7.5epss 0.01

    An Access Control vulnerability exists in Dolibarr ERP/CRM 13.0.2, fixed version is 14.0.0,in the forgot-password function becuase the application allows email addresses as usernames, which can cause a Denial of Service.

  • CVE-2022-24778HigMar 25, 2022
    risk 0.42cvss 7.5epss 0.03

    The imgcrypt library provides API exensions for containerd to support encrypted container images and implements the ctd-decoder command line tool for use by containerd to decrypt encrypted container images. The imgcrypt function `CheckAuthorization` is supposed to check whether…

  • CVE-2022-25270MedFeb 17, 2022
    risk 0.42cvss 6.5epss 0.01

    The Quick Edit module does not properly check entity access in some circumstances. This could result in users with the "access in-place editing" permission viewing some content they are are not authorized to access. Sites are only affected if the QuickEdit module (which comes…

  • CVE-2020-13677HigFeb 11, 2022
    risk 0.42cvss 7.5epss 0.01

    Under some circumstances, the Drupal core JSON:API module does not properly restrict access to certain content, which may result in unintended access bypass. Sites that do not have the JSON:API module enabled are not affected.

  • CVE-2021-20841MedNov 24, 2021
    risk 0.42cvss 6.5epss 0.01

    Improper access control in Management screen of EC-CUBE 2 series 2.11.2 to 2.17.1 allows a remote authenticated attacker to bypass access restriction and to alter System settings via unspecified vectors.

  • CVE-2021-22051MedNov 8, 2021
    risk 0.42cvss 6.5epss 0.01

    Applications using Spring Cloud Gateway are vulnerable to specifically crafted requests that could make an extra request on downstream services. Users of affected versions should apply the following mitigation: 3.0.x users should upgrade to 3.0.5+, 2.2.x users should upgrade to…

  • CVE-2021-40325HigOct 4, 2021
    risk 0.42cvss 7.5epss 0.01

    Cobbler before 3.3.0 allows authorization bypass for modification of settings.

  • CVE-2021-36039MedSep 1, 2021
    risk 0.42cvss 6.5epss 0.02

    Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability via the `quoteId` parameter. An attacker can abuse this vulnerability to disclose sensitive information.

  • CVE-2021-36037MedSep 1, 2021
    risk 0.42cvss 6.5epss 0.02

    Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper improper authorization vulnerability. An authenticated attacker could leverage this vulnerability to achieve sensitive information disclosure.

  • CVE-2021-32701HigJun 22, 2021
    risk 0.42cvss 7.5epss 0.01

    ORY Oathkeeper is an Identity & Access Proxy (IAP) and Access Control Decision API that authorizes HTTP requests based on sets of Access Rules. When you make a request to an endpoint that requires the scope `foo` using an access token granted with that `foo` scope, introspection…

  • CVE-2021-31920MedMay 27, 2021
    risk 0.42cvss 6.5epss 0.01

    Istio before 1.8.6 and 1.9.x before 1.9.5 has a remotely exploitable vulnerability where an HTTP request path with multiple slashes or escaped slash characters (%2F or %5C) could potentially bypass an Istio authorization policy when path based authorization rules are used.

  • CVE-2021-26074MedApr 16, 2021
    risk 0.42cvss 6.5epss 0.01

    Broken Authentication in Atlassian Connect Spring Boot (ACSB) from version 1.1.0 before version 2.1.3: Atlassian Connect Spring Boot is a Java Spring Boot package for building Atlassian Connect apps. Authentication between Atlassian products and the Atlassian Connect Spring Boot…

  • CVE-2021-21432HigApr 9, 2021
    risk 0.42cvss 7.5epss 0.01

    Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. An authentication mechanism added in version 0.7.0 enables some malicious user to obtain secrets utilizing the injected credentials within the `~/.netrc` file. Refer to the…

  • CVE-2021-3127HigMar 16, 2021
    risk 0.42cvss 7.5epss 0.01

    NATS Server 2.x before 2.2.0 and JWT library before 2.0.1 have Incorrect Access Control because Import Token bindings are mishandled.

  • CVE-2020-35849HigDec 30, 2020
    risk 0.42cvss 7.5epss 0.02

    An issue was discovered in MantisBT before 2.24.4. An incorrect access check in bug_revision_view_page.php allows an unprivileged attacker to view the Summary field of private issues, as well as bugnotes revisions, gaining access to potentially confidential information via the…

  • CVE-2020-15246HigNov 23, 2020
    risk 0.42cvss 7.5epss 0.02

    October is a free, open-source, self-hosted CMS platform based on the Laravel PHP Framework. In October CMS from version 1.0.421 and before version 1.0.469, an attacker can read local files on an October CMS server via a specially crafted request. Issue has been patched in Build…