VYPR

CWE-863

Incorrect Authorization

ClassIncompleteLikelihood: High

Description

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

Hierarchy (View 1000)

CVEs mapped to this weakness (1,530)

page 49 of 77
  • CVE-2021-41230MedNov 5, 2021
    risk 0.28cvss 5.3epss 0.01

    Pomerium is an open source identity-aware access proxy. In affected versions changes to the OIDC claims of a user after initial login are not reflected in policy evaluation when using `allowed_idp_claims` as part of policy. If using `allowed_idp_claims` and a user's claims are…

  • CVE-2021-39904MedNov 5, 2021
    risk 0.28cvss 4.3epss 0.01

    An Improper Access Control vulnerability in the GraphQL API in all versions of GitLab CE/EE starting from 13.1 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before 14.4.1 allows a Merge Request creator to resolve discussions…

  • CVE-2021-36383MedJul 12, 2021
    risk 0.28cvss 4.3epss 0.01

    Xen Orchestra (with xo-web through 5.80.0 and xo-server through 5.84.0) mishandles authorization, as demonstrated by modified WebSocket resourceSet.getAll data is which the attacker changes the permission field from none to admin. The attacker gains access to data sets such as…

  • CVE-2021-28681MedMar 18, 2021
    risk 0.28cvss 5.3epss 0.01

    Pion WebRTC before 3.0.15 didn't properly tear down the DTLS Connection when certificate verification failed. The PeerConnectionState was set to failed, but a user could ignore that and continue to use the PeerConnection. )A WebRTC implementation shouldn't allow the user to…

  • CVE-2021-20282MedMar 15, 2021
    risk 0.28cvss 5.3epss 0.01

    When creating a user account, it was possible to verify the account without having access to the verification email link/secret in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.

  • CVE-2021-20281MedMar 15, 2021
    risk 0.28cvss 5.3epss 0.01

    It was possible for some users without permission to view other users' full names to do so via the online users block in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.

  • CVE-2021-22134MedMar 8, 2021
    risk 0.28cvss 4.3epss 0.01

    A document disclosure flaw was found in Elasticsearch versions after 7.6.0 and before 7.11.0 when Document or Field Level Security is used. Get requests do not properly apply security permissions when executing a query against a recently updated document. This affects documents…

  • CVE-2021-22113MedFeb 23, 2021
    risk 0.28cvss 5.3epss 0.01

    Applications using the “Sensitive Headers” functionality in Spring Cloud Netflix Zuul 2.2.6.RELEASE and below may be vulnerable to bypassing the “Sensitive Headers” restriction when executing requests with specially constructed URLs. Applications that use Spring…

  • CVE-2021-21609MedJan 13, 2021
    risk 0.28cvss 5.3epss 0.01

    Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not correctly match requested URLs to the list of always accessible paths, allowing attackers without Overall/Read permission to access some URLs as if they did have Overall/Read permission.

  • CVE-2020-25701MedNov 19, 2020
    risk 0.28cvss 5.3epss 0.01

    If the upload course tool in Moodle was used to delete an enrollment method which did not exist or was not already enabled, the tool would erroneously enable that enrollment method. This could lead to unintended users gaining access to the course. Versions affected: 3.9 to…

  • CVE-2020-25025MedSep 2, 2020
    risk 0.28cvss 4.3epss 0.01

    The l10nmgr (aka Localization Manager) extension before 7.4.0, 8.x before 8.7.0, and 9.x before 9.2.0 for TYPO3 allows Information Disclosure (translatable fields).

  • CVE-2020-2188MedMay 6, 2020
    risk 0.28cvss 4.3epss 0.01

    A missing permission check in Jenkins Amazon EC2 Plugin 1.50.1 and earlier in form-related methods allowed users with Overall/Read access to enumerate credentials ID of credentials stored in Jenkins.

  • CVE-2019-3848MedMar 26, 2019
    risk 0.28cvss 4.3epss 0.01

    A vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Permissions were not correctly checked before loading event information into the calendar's edit event modal popup, so logged in non-guest users could view unauthorised calendar events. (Note: It was…

  • CVE-2018-17857MedOct 9, 2018
    risk 0.28cvss 4.3epss 0.01

    An issue was discovered in Joomla! before 3.8.13. Inadequate checks on the tags search fields can lead to an access level violation.

  • CVE-2018-3778MedAug 8, 2018
    risk 0.28cvss 5.3epss 0.01

    Improper authorization in aedes version <0.35.0 will publish a LWT in a channel when a client is not authorized.

  • CVE-2017-17708MedJul 31, 2018
    risk 0.28cvss 4.3epss 0.01

    Because of insufficient authorization checks it is possible for any authenticated user to change profile data of other users in Pleasant Password Server before 7.8.3.

  • CVE-2018-0269MedApr 19, 2018
    risk 0.28cvss 4.3epss 0.01

    A vulnerability in the web framework of the Cisco Digital Network Architecture Center (DNA Center) could allow an unauthenticated, remote attacker to communicate with the Kong API server without restriction. The vulnerability is due to an overly permissive Cross Origin Resource…

  • CVE-2017-2599MedApr 11, 2018
    risk 0.28cvss 5.4epss 0.01

    Jenkins before versions 2.44 and 2.32.2 is vulnerable to an insufficient permission check. This allows users with permissions to create new items (e.g. jobs) to overwrite existing items they don't have access to (SECURITY-321).

  • CVE-2017-1766MedMar 30, 2018
    risk 0.28cvss 4.3epss 0.01

    Due to incorrect authorization in IBM Business Process Manager 8.6 an attacker can claim and work on ad hoc tasks he is not assigned to. IBM X-Force ID: 136151.

  • CVE-2017-0920MedMar 22, 2018
    risk 0.28cvss 4.3epss 0.01

    GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the Projects::MergeRequests::CreationsController component resulting in an attacker to see every project name and their respective namespace on a GitLab…