Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,306 vulnerabilities with CWE-284

CVE-2023-21670 HIGH

GPU Subsystem < Privileged Mode - Command Injection

CVE-2023-3099 MEDIUM

KylinSoft youker-assistant <3.0.2-0kylin6k70-23 - Info Disclosure

CVE-2023-3096 MEDIUM

kylin-software-properties < 0.0.1-130 - Improper Access Control in changedSource Function

CVE-2023-3095 MEDIUM

nilsteampassnet/teampass <3.0.9 - Info Disclosure

CVE-2023-28066 HIGH

Dell OS Recovery Tool 2.2.4013 and 2.3.7012.0 - Authenticated Privilege Escalation

CVE-2023-3018 MEDIUM

SourceCodester Lost and Found Information System 1.0 - Info Disclosure

CVE-2023-2940 MEDIUM

Google Chrome < 114.0.5735.90 - Improper Access Control via Malicious Extension

CVE-2023-2979 MEDIUM

Pydio Cells 4.2.0 - Improper Access Control in User Creation Handler

CVE-2023-33191 MEDIUM

Kyverno <1.9.4 - Privilege Escalation

CVE-2023-2946 HIGH

OpenEMR < 7.0.1 - Improper Access Control

CVE-2023-2944 MEDIUM

OpenEMR < 7.0.1 - Improper Access Control

CVE-2023-2903 MEDIUM

NFine Rapid Development Platform 20230511 - Unauthenticated Improper Access Control via Role/GetGridJson Endpoint

CVE-2023-2902 MEDIUM

NFine Rapid Development Platform 20230511 - Unauthenticated Improper Access Control in Organize/GetTreeGridJson Endpoint

CVE-2023-2901 MEDIUM

NFine Rapid Development Platform 20230511 - Unauthenticated Improper Access Control via User/GetGridJson Endpoint

CVE-2023-33947 LOW

Liferay Portal/DXP <7.4.3.60 - Info Disclosure

CVE-2023-33946 LOW

Liferay Portal/DXP <7.4.3.49 - Info Disclosure

CVE-2023-2845 HIGH

GitHub cloudexplorer-dev/cloudexplorer-lite <1.1.0 - Info Disclosure

CVE-2023-23446 HIGH

SICK FTMg AIR FLOW SENSOR Firmware < 2.0 - Unauthenticated Arbitrary File Read via REST Interface

CVE-2023-23445 HIGH

SICK FTMg AIR FLOW SENSOR Firmware < 2.0 - Unauthenticated Improper Access Control via REST Interface

CVE-2023-31199 HIGH

Intel(R) Solid State Drive Toolbox <3.4.5 - Privilege Escalation

CVE-2023-30768 HIGH

Intel Server Board S2600WT Family BIOS < 0016 - Authenticated Privilege Escalation via Local Access

CVE-2023-29242 MEDIUM

Intel(R) oneAPI Toolkits <2021.1 Beta 10 - Privilege Escalation

CVE-2023-2674 MEDIUM

GitHub openemr/openemr <7.0.1 - Info Disclosure

CVE-2023-2670 MEDIUM

SourceCodester Lost and Found Information System 1.0 - Info Disclosure

CVE-2023-1834 CRITICAL

Rockwell Automation Kinetix 5500 - Info Disclosure

Previous Page 131 of 213 Next

Details

Vulnerabilities 5,306

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy