Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,306 vulnerabilities with CWE-284

CVE-2022-28173 CRITICAL

Hikvision DS-3WF0AC-2NT and DS-3WF01C-2N/O Firmware - Unauthenticated Privilege Escalation to Admin via Crafted Messages

CVE-2022-4567 HIGH

GitHub openemr/openemr <7.0.0.2 - Info Disclosure

CVE-2022-31708 MEDIUM

vRealize Operations 8.6.0-8.6.4.20823815 - Improper Access Control

CVE-2022-25627 MEDIUM

Symantec Identity Manager 14.4 - Authenticated Remote Command Execution via Management Console

CVE-2022-42865 MEDIUM

iPadOS < 16.2 - Privacy Preferences Bypass via Hardened Runtime

CVE-2022-42862 MEDIUM

iPadOS < 16.2 - Privacy Preferences Bypass

CVE-2022-42861 HIGH

iPadOS < 15.7.2 - Sandbox Escape via Improved Checks Bypass

CVE-2022-42859 MEDIUM

iPadOS < 16.2 - Privacy Preference Bypass via Improper Access Control

CVE-2022-42853 MEDIUM

macOS < 13.1 - Unprotected File System Modification via Improper Access Control

CVE-2022-32945 MEDIUM

iPadOS < 16.0 - Unauthorized Audio Recording via Paired AirPods

CVE-2022-47407 MEDIUM

Master-Quiz < 2.2.1 and 3.x < 3.5.1 - Unauthenticated Quiz Session Takeover

CVE-2022-38355 HIGH

Daikin SVMPC1 <2.1.22 - Info Disclosure

CVE-2022-46664 HIGH

Mendix Workflow Commons <V2.4.0, <V2.1.4, <V2.3.2 - Info Disclosure

CVE-2022-46354 MEDIUM

SCALANCE X204RNA - Info Disclosure

CVE-2022-45937 HIGH

Siemens APOGEE PXC and TALON TC Firmware - Authenticated Sensitive Information Exposure via Web Server

CVE-2022-45936 HIGH

Mendix Email Connector < 2.0.0 - Authenticated Improper Access Control

CVE-2022-41261 MEDIUM

SAP Solution Manager Diagnostic Agent <7.20 - Info Disclosure

CVE-2022-23485 MEDIUM

Sentry 20.6.0-22.10.0 - Improper Access Control via Invite Link Cookie Manipulation

CVE-2022-44932 HIGH

Tenda A18 v15.13.07.09 - Unauthenticated Telnet Service Access

CVE-2022-39915 LOW

Samsung Calendar < 11.6.08.0 - Improper Access Control via Implicit Intent

CVE-2022-39910 LOW

Samsung Pass < 4.0.06.7 - Unauthenticated Data Access via Pop-up View

CVE-2022-39906 LOW

Android SecTelephonyProvider - Improper Access Control

CVE-2022-39900 MEDIUM

Android Nice Catch - Unauthenticated Improper Access Control

CVE-2022-39898 MEDIUM

Android - Improper Access Control in IIccPhoneBook

CVE-2022-39896 MEDIUM

Android Contacts - Improper Access Control via Implicit Intent

Previous Page 142 of 213 Next

Details

Vulnerabilities 5,306

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy