Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,306 vulnerabilities with CWE-284

CVE-2023-49874 MEDIUM

Mattermost < 7.8.14 - Unauthenticated Improper Access Control in Private Playbook Run Task Update

CVE-2023-6578 HIGH

Software AG WebMethods <10.15.x - Improper Access Controls

CVE-2023-45210 MEDIUM

Pleasanter < 1.3.47.0 - Authenticated Unauthorized Temporary File Access

CVE-2023-2861 MEDIUM

qemu < 8.1.0 - Improper Access Control via 9pfs Special File Handling

CVE-2023-33071 HIGH

Qualcomm QCA6574 and Related Firmware - Memory Corruption via Untrusted App Access to HAb

CVE-2023-39257 HIGH

Dell Rugged Control Center < 4.7 - Privilege Escalation via Unsecured Folder Modification

CVE-2023-39256 HIGH

Dell Rugged Control Center < 4.7 - Privilege Escalation via Unsecured Folder Modification

CVE-2023-43089 MEDIUM

Dell Rugged Control Center <4.7 - Privilege Escalation

CVE-2023-49694 HIGH

NETGEAR ProSAFE Network Management System < 1.7.0.31 - Privilege Escalation via Arbitrary JSP File Creation

CVE-2023-32065 MEDIUM

OroCommerce 4.2.0-4.2.9 - Improper Access Control

CVE-2023-32064 MEDIUM

OroCommerce 4.2.0-4.2.7 - Authenticated Improper Access Control via Customer Menu ACL Bypass

CVE-2023-32063 MEDIUM

Oroinc Client Relationship Management - Improper Access Control

CVE-2023-32062 MEDIUM

OroPlatform 4.2.0-4.2.5 - Improper Access Control in Calendar Event Handling

CVE-2023-6202 MEDIUM

Mattermost < 7.8.12, 9.1.0-9.1.1 - Unauthenticated Improper Access Control via Boards User Endpoint

CVE-2023-47865 MEDIUM

Mattermost < 7.8.12, 8.0.0-8.1.3, 7.8.13 - Improper Access Control via Hardened Mode Bypass

CVE-2023-44290 HIGH

Dell Command | Monitor < 10.10.0 - Privilege Escalation via Installation Repair

CVE-2023-44289 HIGH

Dell Command | Configure < 4.11.0 - Privilege Escalation via Installation Repair

CVE-2023-43086 HIGH

Dell Command | Configure <4.11.0 - Privilege Escalation

CVE-2023-39253 HIGH

Dell OS Recovery Tool 2.2.4013, 2.3.7012.0, 2.3.7515.0 - Authenticated Privilege Escalation

CVE-2023-5299 HIGH

Fuji Electric Tellus Lite V-Simulator < 4.0.19.0 - Improper Access Control

CVE-2023-48303 LOW

Nextcloud Server 25.0.0-25.0.10 - Improper Access Control in External Storage Authentication

CVE-2023-48239 HIGH

Nextcloud Server 20.0.0-20.0.14.16, 25.0.0-25.0.13 - Authenticated External Storage Access Control Bypass

CVE-2023-26347 HIGH

Adobe ColdFusion <2023.5-2021.11 - Auth Bypass

CVE-2023-44292 MEDIUM

Dell Repository Manager < 3.4.4 - Privilege Escalation via Installation Module

CVE-2023-44282 MEDIUM

Dell Repository Manager < 3.4.3 - Privilege Escalation via Installation Module

Previous Page 123 of 213 Next

Details

Vulnerabilities 5,306

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy