Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,080 vulnerabilities with CWE-284

CVE-2026-35238 MEDIUM

MySQL Server 8.0.0-8.0.45, 8.4.0-8.4.8, 9.0.0-9.6.0 - Authenticated Denial of Service in InnoDB

CVE-2026-35237 MEDIUM

MySQL Server 8.0.0-8.0.45, 8.4.0-8.4.8, 9.0.0-9.6.0 - Authenticated Denial of Service in InnoDB

CVE-2026-35236 MEDIUM

MySQL Server 8.0.0-8.0.45, 8.4.0-8.4.8, 9.0.0-9.6.0 - Authenticated Denial of Service in InnoDB

CVE-2026-35235 MEDIUM

MySQL Server 9.0.0-9.6.0 - Authenticated Denial of Service in GIS Component

CVE-2026-35234 MEDIUM

MySQL Server 9.0.0-9.6.0 - Authenticated Denial of Service in Server Partition Component

CVE-2026-35232 MEDIUM

Oracle Fusion Middleware 12.2.1.4.0 and 14.1.2.0.0 - Unauthorized Data Access

CVE-2026-35231 HIGH

Oracle Financial Services Transaction Filtering 8.1.2.8.0 - Info Disclosure

CVE-2026-35230 HIGH

Oracle VM VirtualBox 7.2.6 - Privilege Escalation

CVE-2026-35229 HIGH

Oracle Database Server 19.3-19.30 - Info Disclosure

CVE-2026-34325 MEDIUM

Oracle Corporation Oracle Financial Services Analytical Applications Infrastructure < 8.0.7.9 - Denial of Service

CVE-2026-34324 MEDIUM

Oracle Life Sciences InForm 7.0.1.0 - SQL Injection

CVE-2026-34323 MEDIUM

Oracle Life Sciences InForm 7.0.1.0 and 7.0.1.1 - Unauthenticated Improper Access Control via IDM Authentication

CVE-2026-34314 MEDIUM

Oracle Financial Services Analytical Applications Infrastructure 8.0.7.9 - Privilege Escalation

CVE-2026-34312 LOW

Oracle Database Server 19.3-19.30 - Info Disclosure

CVE-2026-34310 HIGH

Oracle Financial Services Analytical Applications Infrastructure 8.0.7.9 - Info Disclosure

CVE-2026-34309 HIGH

PeopleSoft Enterprise PeopleTools 8.61-8.62 - Privilege Escalation

CVE-2026-34307 MEDIUM

Oracle PeopleSoft PeopleTools 8.61-8.62 Workflow - Unauthorized Data Access

CVE-2026-34306 MEDIUM

PeopleSoft Enterprise FIN Project Costing 9.2 - Info Disclosure

CVE-2026-34302 MEDIUM

Oracle Workflow 12.2.3-12.2.15 - Unauthorized Data Manipulation and Partial DoS

CVE-2026-34301 MEDIUM

PeopleSoft Enterprise FIN Maintenance Management 9.2 - Info Disclosure

CVE-2026-34299 MEDIUM

PeopleSoft Enterprise FIN Maintenance Management 9.2 - Info Disclosure

CVE-2026-34298 MEDIUM

Oracle Applications Framework 12.2.9-12.2.15 - Authenticated Improper Access Control in Personalization

CVE-2026-34295 MEDIUM

PeopleSoft Enterprise SCM Purchasing 9.2 - Info Disclosure

CVE-2026-34294 MEDIUM

Oracle Identity Manager Connector 12.2.1.4.0 - Privilege Escalation

CVE-2026-34292 HIGH

Oracle WebLogic Server 12.2.1.4.0 and 14.1.1.0.0 - Server Takeover

Previous Page 13 of 204 Next

Details

Vulnerabilities 5,080

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy