Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,300 vulnerabilities with CWE-284

CVE-2024-1308 HIGH

WooCommerce Cloak Affiliate Links <1.0.33 - Info Disclosure

CVE-2024-0899 MEDIUM

s2Member < 230815 - Unauthenticated Information Exposure via API

CVE-2024-0626 MEDIUM

WooCommerce Clover Payment Gateway <1.3.1 - Info Disclosure

CVE-2024-29993 HIGH

Azure CycleCloud - Privilege Escalation

CVE-2024-29990 CRITICAL

Microsoft Azure Kubernetes Service - Privilege Escalation

CVE-2024-29055 HIGH

Microsoft Defender for IoT 22.0.0-24.1.2 - Elevation of Privilege

CVE-2024-29054 HIGH

Microsoft Defender for IoT 22.0.0-24.1.2 - Elevation of Privilege

CVE-2024-28922 MEDIUM

Windows 10 1507-22H2, Windows 11 21H2-23H2, Windows Server 2012-2022 - Secure Boot Security Feature Bypass

CVE-2024-28917 MEDIUM

Azure Arc Extensions - Cluster-Scope Elevation of Privilege via Improper Access Control

CVE-2024-26234 MEDIUM

Windows 10 1507-22H2, Windows 11 21H2-23H2, Windows Server 2008-2012 - Proxy Driver Spoofing

CVE-2024-21424 MEDIUM

Azure Compute Gallery - Elevation of Privilege

CVE-2024-31805 MEDIUM

TOTOLINK EX200 V4.0.3c.7646_B20201211 - Command Injection

CVE-2024-27895 HIGH

HarmonyOS - Improper Access Control in Window Module

CVE-2024-30418 HIGH

Huawei EMUI and HarmonyOS - Unauthenticated Denial of Service via App Management Module

CVE-2024-2447 MEDIUM

Mattermost <8.1.11-9.5.2 - Privilege Escalation

CVE-2024-29221 MEDIUM

Mattermost Server <9.5.2-8.1.11 - Info Disclosure

CVE-2024-21848 LOW

Mattermost Server <8.1.11 - Privilege Escalation

CVE-2024-31207 MEDIUM

NPM Vite < 2.9.18 - Information Disclosure

CVE-2024-30261 LOW

Undici < 5.28.4 - Improper Access Control via Integrity Option Tampering

CVE-2024-1418 MEDIUM

CGC Maintenance Mode <1.3 - Info Disclosure

CVE-2024-3270 LOW

ThingsBoard < 3.6.2 - Improper Access Control in AdvancedFeature

CVE-2024-20302 MEDIUM

Cisco Nexus Dashboard Orchestrator - Privilege Escalation

CVE-2024-20283 MEDIUM

Cisco Nexus Dashboard - Info Disclosure

CVE-2024-27605 HIGH

Alldata V0.4.6 - Improper Access Control

CVE-2024-27602 CRITICAL

Alldata V0.4.6 - Improper Access Control

Previous Page 109 of 212 Next

Details

Vulnerabilities 5,300

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy