Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,306 vulnerabilities with CWE-284

CVE-2023-43072 MEDIUM

Dell SmartFabric Storage Software <1.4 - Privilege Escalation

CVE-2023-1832 MEDIUM

Candlepin < 4.3.7-3 - Improper Access Control

CVE-2023-22618 HIGH

Nokia WaveLite Metro 200 - Unauthenticated Privilege Escalation via User Creation

CVE-2023-0506 HIGH

ByDemes Airspace CCTV Web Service 2.616.BY00.11 - Privilege Escalation in Camera Control Panel

CVE-2023-5353 MEDIUM

SuiteCRM < 7.14.1 - Improper Access Control

CVE-2023-24844 HIGH

Qualcomm FastConnect and AR8035/QCA8081/QCA8337 Firmware - Memory Corruption in Access Control Core Library

CVE-2023-21673 HIGH

Qualcomm FastConnect and AQT1000/AR8035 Firmware - Memory Corruption in VM Resource Manager

CVE-2023-32572 MEDIUM

FlashArray Purity 6.3.0-6.3.6 - Improper Access Control in pgroup Retention Lock

CVE-2023-28372 MEDIUM

FlashBlade Purity < 4.1.0 - Authenticated Availability Impact via Object Retention Extension

CVE-2023-5288 CRITICAL

SICK SIM1012-0P0G200 Firmware - Unauthenticated Configuration Modification and Firmware Upload

CVE-2023-32477 HIGH

Dell Common Event Enabler < 8.9.8.2 - Privilege Escalation via Improper Access Control

CVE-2023-20223 HIGH

Cisco DNA Center < 2.3.5.4 - Unauthenticated Improper Access Control via API Request

CVE-2023-32458 HIGH

Dell AppSync 4.4.0.0-4.6.0.0 - Privilege Escalation via Embedded Service Enabler

CVE-2023-41322 MEDIUM

GLPI <10.0.10 - Privilege Escalation

CVE-2023-41311 MEDIUM

Huawei EMUI and HarmonyOS - Improper Access Control in Audio Module

CVE-2023-39376 MEDIUM

SiberianCMS 4.0.0-4.20.44 - Authenticated Security Feature Bypass

CVE-2023-43141 CRITICAL

TOTOLINK A3700R and N600R Firmware - Improper Access Control

CVE-2023-25525 HIGH

NVIDIA Cumulus Linux < 5.6.0 - Information Disclosure via VxLAN-Encapsulated IPv6 Packet Forwarding

CVE-2023-38206 MEDIUM

Adobe ColdFusion <2023u2 - Privilege Escalation

CVE-2023-38205 HIGH KEV

Adobe ColdFusion <2018u18,2021u8,2023u2 - Privilege Escalation

CVE-2023-40850 HIGH

netentsec NS-ASG 6.3 - Info Disclosure

CVE-2023-20191 MEDIUM

Cisco IOS XR < 7.7.21 - Unauthenticated Access Control Bypass via MPLS Ingress ACL Processing

CVE-2023-36638 MEDIUM

FortiAnalyzer 6.0.0-6.4.11 & FortiManager 6.4.0-6.4.11 - Privilege Escalation via Stolen GUI Session ID

CVE-2023-34470 MEDIUM

AMI AptioV - Improper Access Control via Local Network

CVE-2023-34469 MEDIUM

AMI AptioV - Improper Access Control via Physical Network

Previous Page 127 of 213 Next

Details

Vulnerabilities 5,306

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy