Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,309 vulnerabilities with CWE-284

CVE-2022-27805 CRITICAL

Abode Systems iota All-In-One Security Kit 6.9X and 6.9Z - Unauthenticated Arbitrary XCMD Execution via GHOME Control

CVE-2022-26423 HIGH

Aethon TUG Home Base Server <24 - Info Disclosure

CVE-2022-1066 HIGH

Aethon TUG Home Base Server < 24 - Unauthenticated Access to Hashed User Credentials

CVE-2022-23241 HIGH

Clustered Data ONTAP 9.11.1-9.11.1P2 - Authenticated WORM Data Modification and Deletion

CVE-2022-43429 HIGH

Jenkins Compuware Topaz for Total Test Plugin <2.4.8 - Info Disclosure

CVE-2022-40798 HIGH

OcoMon < 4.0 - Unauthenticated Account Takeover via Email Enumeration

CVE-2022-39421 HIGH

Oracle VM VirtualBox < 6.1.40 - Authenticated Remote Code Execution

CVE-2022-39406 HIGH

Oracle PeopleSoft Enterprise Common Components 9.2 - Authenticated Improper Access Control in Approval Framework

CVE-2022-39405 MEDIUM

Oracle Access Manager 12.2.1.3.0 - Unauthenticated Improper Access Control

CVE-2022-39399 LOW

Oracle GraalVM 20.3.7, 21.3.3, 22.2.0 - Unauthenticated Data Manipulation via HTTP

CVE-2022-21619 LOW

Oracle GraalVM & Java SE Multiple Versions - Unauthenticated Data Manipulation

CVE-2022-38743 HIGH

Rockwell Automation FactoryTalk VantagePoint <8.31 - Privilege Esca...

CVE-2022-3382 HIGH

HIWIN Robot System Software <3.3.21.9869 - DoS

CVE-2022-3325 LOW

GitLab CE/EE <15.2.5-<15.3.4-<15.4.1 - Info Disclosure

CVE-2022-3286 MEDIUM

GitLab EE <15.2.5-15.4.1 - Auth Bypass

CVE-2022-3067 MEDIUM

GitLab CE/EE <15.2.5-15.4.1 - Info Disclosure

CVE-2022-3066 MEDIUM

GitLab <15.2.5-15.4.1 - Info Disclosure

CVE-2022-3030 MEDIUM

GitLab CE/EE <15.1.6, <15.2.4, <15.3.2 - Info Disclosure

CVE-2022-2630 MEDIUM

GitLab CE/EE <15.2.4-15.3.2 - Info Disclosure

CVE-2022-2052 CRITICAL

Trumpf Job Order Interface OSEON and TruTops Products - Unauthenticated Remote Access via Default Privileged Accounts

CVE-2022-39310 MEDIUM

GoCD < 21.1.0 - Authenticated Agent Impersonation via Broken Access Control

CVE-2022-35689 MEDIUM

Adobe Commerce <2.4.4-p1, 2.4.5 - Auth Bypass

CVE-2022-28761 MEDIUM

Zoom On-Premise Meeting Connector MMR <4.8.20220916.131 - Privilege...

CVE-2022-28760 MEDIUM

Zoom On-Premise Meeting Connector MMR <4.8.20220815.130 - Info Disc...

CVE-2022-28759 HIGH

Zoom On-Premise Meeting Connector MMR <4.8.20220815.130 - Info Disc...

Previous Page 145 of 213 Next

Details

Vulnerabilities 5,309

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy