Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,306 vulnerabilities with CWE-284

CVE-2023-46759 HIGH

HarmonyOS - Improper Access Control in Call Module

CVE-2023-46755 MEDIUM

Huawei EMUI and HarmonyOS - Denial of Service via Input Parameter Verification Bypass

CVE-2023-46501 CRITICAL

BoltWire 6.03 - Unauthenticated Sensitive Information Disclosure and Password Change

CVE-2023-42542 LOW

Samsung Push Service < 3.4.10 - Improper Access Control

CVE-2023-42540 MEDIUM

Samsung Account < 14.5.01.1 - Improper Access Control via Implicit Intent

CVE-2023-5976 MEDIUM

microweber < 2.0.0 - Improper Access Control

CVE-2023-36620 MEDIUM

Boomerang Parental Control <13.83 - Info Disclosure

CVE-2023-31020 MEDIUM

NVIDIA GPU Display Driver - Privilege Escalation

CVE-2023-31019 HIGH

NVIDIA GPU Display Driver - Privilege Escalation

CVE-2023-43336 HIGH

Sangoma Technologies FreePBX - Info Disclosure

CVE-2023-5916 MEDIUM

Lissy93 Dashy 2.1.1 - Improper Access Control in Configuration Handler

CVE-2023-20267 MEDIUM

Cisco Firepower Threat Defense 6.7.0-7.3.1.1 - Unauthenticated IP Geolocation Rule Bypass

CVE-2023-5833 HIGH

AnythingLLM < 0.1.0 - Improper Access Control

CVE-2023-46665 CRITICAL

Sielco PolyEco1000 - Authentication Bypass via Password Modification

CVE-2023-46664 HIGH

Sielco PolyEco1000 - Privilege Escalation

CVE-2023-46663 HIGH

Sielco PolyEco1000 - Improper Access Control via Unauthorized HTTP Requests

CVE-2023-46662 HIGH

Sielco PolyEco1000 - Info Disclosure

CVE-2023-46661 CRITICAL

Sielco PolyEco1000 - Privilege Escalation

CVE-2023-46666 MEDIUM

Elastic Sharepoint Online Python Connector - Info Disclosure

CVE-2023-45228 MEDIUM

Sielco Analog FM Transmitter Firmware - Unauthenticated Improper Access Control via User Edit Parameters

CVE-2023-42769 CRITICAL

Sielco Analog FM Transmitter Firmware - Unauthenticated Session ID Brute Force and Authentication Bypass

CVE-2023-30969 HIGH

Palantir Tiles < 4.326.0 - Unauthenticated Improper Access Control

CVE-2023-38848 HIGH

rmc R Beauty CLINIC Line <13.6.1 - Info Disclosure

CVE-2023-45844 MEDIUM

Bosch Rexroth ctrlX HMI Web Panel WR2107/WR2110/WR2115 Firmware - Improper Access Control in Kiosk Mode

CVE-2023-44794 CRITICAL

Dromara Sa-Token < 1.37.0 - Privilege Escalation via Crafted Payload

Previous Page 125 of 213 Next

Details

Vulnerabilities 5,306

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy