CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
4,434 vulnerabilities with CWE-284
CVE-2026-3800
MEDIUM
janobe Resort Reservation System 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2026-3797
MEDIUM
Tiandy Video Surveillance System 7.17.0 - Unrestricted Upload
CVSS 6.3
CVE-2026-3796
MEDIUM
Qi-ANXIN QAX Virus Removal - Privilege Escalation
CVSS 5.3
CVE-2026-3749
MEDIUM
Bytedesk <=1.3.9 - Unrestricted Upload
CVSS 6.3
CVE-2026-3748
MEDIUM
Bytedesk <=1.3.9 - Unrestricted Upload
CVSS 6.3
CVE-2026-30859
MEDIUM
WeKnora <0.2.12 - Privilege Escalation
CVSS 5.3
CVE-2026-30855
HIGH
WeKnora <0.3.2 - Privilege Escalation
CVSS 8.8
CVE-2026-3668
LOW
Freedom Factory dGEN1 <=20260221 - Auth Bypass
CVSS 3.1
CVE-2026-30244
HIGH
Plane <1.2.2 - Info Disclosure
CVSS 7.5
CVE-2026-29061
MEDIUM
Gokapi <2.2.3 - Privilege Escalation
CVSS 5.4
CVE-2026-29060
MEDIUM
Gokapi <2.2.3 - Privilege Escalation
CVSS 5.0
CVE-2026-28682
MEDIUM
Gokapi <2.2.3 - Info Disclosure
CVSS 6.4
CVE-2026-25877
MEDIUM
Chartbrew <4.8.1 - Privilege Escalation
CVSS 6.5
CVE-2026-29188
CRITICAL
File Browser <2.61.1 - Privilege Escalation
CVSS 9.1
CVE-2026-29077
HIGH
Frappe <15.98.0/14.100.0 - Privilege Escalation
CVSS 7.1
CVE-2026-28410
The Graph <3.0.0 - Auth Bypass
CVE-2025-70614
HIGH
OpenCode Systems OC Messaging 6.32.2 - Privilege Escalation
CVSS 8.1
CVE-2026-28790
HIGH
OliveTin <3000.11.0 - DoS
CVSS 7.5
CVE-2026-27723
MEDIUM
OpenProject <17.0.5/17.1.2 - Auth Bypass
CVSS 4.3
CVE-2026-26418
HIGH
TCS Cognix Recon Client 3.0 - Auth Bypass
CVSS 7.5
CVE-2026-26417
HIGH
TCS Cognix Recon Client 3.0 - Privilege Escalation
CVSS 8.1
CVE-2026-25702
HIGH
SUSE Linux Enterprise Server 12 SP5 - Auth Bypass
CVSS 7.3
CVE-2026-3543
HIGH
Google Chrome <145.0.7632.159 - Memory Corruption
CVSS 8.8
CVE-2026-3542
HIGH
Google Chrome <145.0.7632.159 - Memory Corruption
CVSS 8.8
CVE-2026-3541
HIGH
Google Chrome <145.0.7632.159 - Memory Corruption
CVSS 8.8
Details
Vulnerabilities
4,434