Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,306 vulnerabilities with CWE-284

CVE-2022-4703 MEDIUM

Royal Elementor Addons <1.3.59 - Privilege Escalation

CVE-2022-4702 MEDIUM

Royal Elementor Addons <1.3.59 - Privilege Escalation

CVE-2022-4700 MEDIUM

Royal Elementor Addons <1.3.59 - Privilege Escalation

CVE-2022-23508 HIGH

Weave GitOps - Privilege Escalation

CVE-2022-47543 MEDIUM

Siren Investigate < 12.1.7 - Access Control Bypass on Global Objects

CVE-2022-47634 HIGH

Isode M-Link R16.2v1-R17.0v23 - Unauthenticated Archive Data Access and Manipulation via HTTP Endpoints

CVE-2022-34672 HIGH

NVIDIA Virtual GPU < 11.11 and Cloud Gaming < 527.27 - Improper Access Control

CVE-2022-4814 MEDIUM

usememos/memos <0.9.1 - Info Disclosure

CVE-2022-4810 MEDIUM

usememos/memos <0.9.1 - Info Disclosure

CVE-2022-4809 HIGH

usememos/memos <0.9.1 - Info Disclosure

CVE-2022-4807 MEDIUM

usememos/memos <0.9.1 - Info Disclosure

CVE-2022-45778 CRITICAL

Hillstone Firewall SG-6000 < 5.0.4.0 - Unauthenticated Permission Bypass via Report Configuration Error

CVE-2022-45431 HIGH

Dahua DSS Server - Unauthenticated Denial of Service via Crafted Packet

CVE-2022-45430 LOW

Dahua DSS Express and DSS Professional - Unauthenticated SSHD Service Manipulation via Crafted Packet

CVE-2022-4724 CRITICAL

rdiffweb < 2.5.5 - Improper Access Control

CVE-2022-44014 MEDIUM

Simmeth Lieferantenmanager <5.6 - SQL Injection

CVE-2022-44565 MEDIUM

UI airMAX AC <8.7.11, airFiber 60/LR <2.6.2, airFiber 60 XG/HD <1.0.0, airFiber GBE <1.4.1 - Information Disclosure

CVE-2022-4689 HIGH

usememos/memos <0.9.0 - Info Disclosure

CVE-2022-4684 HIGH

usememos/memos <0.9.0 - Info Disclosure

CVE-2022-23513 MEDIUM

Pi-hole AdminLTE < 5.17 - Unauthenticated Improper Access Control in queryads Endpoint

CVE-2022-41654 MEDIUM

Ghost Foundation Ghost <5.9.4 - Auth Bypass

CVE-2022-3186 HIGH

Dataprobe iBoot-PDU Firmware < 1.42.06162022 - Unauthenticated Improper Access Control via Cloud Management Page

CVE-2022-38655 MEDIUM

BigFix WebUI - Privilege Escalation

CVE-2022-38546 MEDIUM

Zyxel NBG7510 <V1.00(ABZY.3)C0 - Info Disclosure

CVE-2022-44643 MEDIUM

Grafana Enterprise Metrics 1.0.0-1.7.0 and 2.0.0-2.3.0 - Improper Access Control via Label Selector Bypass

Previous Page 141 of 213 Next

Details

Vulnerabilities 5,306

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy