Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,303 vulnerabilities with CWE-284

CVE-2023-29164 HIGH

Intel Server Board - Privilege Escalation

CVE-2023-52164 MEDIUM

Digiever DS-2105 Pro <3.1.0.71-11 - Info Disclosure

CVE-2023-51644 HIGH

Allegra < 7.5.1 - Unauthenticated Remote Code Execution via Struts Improper Access Control

CVE-2023-29121 CRITICAL

Waybox Enel TCF Agent - Privilege Escalation

CVE-2023-29115 MEDIUM

Enel X Waybox Pro Firmware < 2.1.1.0_jb3vu096a - Denial of Service

CVE-2023-26770 CRITICAL

TaskCafe 0.3.2 - Unauthenticated Password Change via Cookie Manipulation

CVE-2023-43626 HIGH

Intel(R) Processors - Privilege Escalation

CVE-2023-37234 CRITICAL

Loftware Spectrum < 4.6 - Unauthenticated Improper Access Control via JMX Registry

CVE-2023-30587 HIGH

Node.js < 20.3.1 - Permission Model Bypass via Inspector Worker Manipulation

CVE-2023-30583 HIGH

Node.js < 20.3.1 - Permission Model Bypass via fs.openAsBlob()

CVE-2023-30582 MEDIUM

Node.js 20 < 20.3.1 - Unauthorized File Monitoring via fs.watchFile API

CVE-2023-43489 MEDIUM

Intel Computing Improvement Program < 2.4.10717 - Authenticated Denial of Service via Local Access

CVE-2023-31341 HIGH

AMD Prof < 4.1.424, < 4.2.816, < 4.2.845 - Authenticated Denial of Service via IOCTL Input Buffer

CVE-2023-42957 LOW

iPadOS < 17.0 - Unauthorized Sensitive Location Information Access

CVE-2023-50181 MEDIUM

FortiADC 7.4.0-7.4.1 and < 7.2.4 - Authenticated Improper Access Control via HTTP/HTTPS Requests

CVE-2023-6491 MEDIUM

Strong Testimonials <3.1.12 - Info Disclosure

CVE-2023-6968 HIGH

The Moneytizer < 9.6.3 - Cross-Site Request Forgery via Missing Nonce Validation

CVE-2023-6966 HIGH

The Moneytizer <= 9.6.3 - Authenticated Improper Access Control in core_ajax.php

CVE-2023-43849 MEDIUM

Aten PE6208 Firmware 2.3.228-2.4.232 - Authenticated Arbitrary Firmware Upload via Web Interface

CVE-2023-43848 HIGH

Aten PE6208 <2.4.232 - Privilege Escalation

CVE-2023-43847 MEDIUM

Aten PE6208 <2.4.232 - Privilege Escalation

CVE-2023-52712 HIGH

Huawei Curiem-WFG9B Firmware - Improper Access Control via Exposed SMI Handler

CVE-2023-52711 HIGH

Huawei Curiem-WFG9B Firmware - Improper Access Control via Exposed SMI Handler

CVE-2023-52801 CRITICAL

Linux Kernel - Use-After-Free in iommufd iopt_area_split

CVE-2023-47859 MEDIUM

Intel(R) Wireless Bluetooth <23.20 - DoS

Previous Page 117 of 213 Next

Details

Vulnerabilities 5,303

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy