CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
5,332 vulnerabilities with CWE-284
CVE-2016-8323
MEDIUM
Oracle FLEXCUBE <11.5.0 - Unauthorized Update
CVSS 5.4
CVE-2016-8320
MEDIUM
Oracle FLEXCUBE <12.0.2 - Info Disclosure
CVSS 6.1
CVE-2016-8319
MEDIUM
Oracle FLEXCUBE <12.3.0 - Unauth RCE
CVSS 6.1
CVE-2016-8317
MEDIUM
Oracle FLEXCUBE <12.3.0 - Info Disclosure
CVSS 5.3
CVE-2016-8316
MEDIUM
Oracle FLEXCUBE <12.3.0 - Info Disclosure
CVSS 5.4
CVE-2016-8315
HIGH
Oracle FLEXCUBE <12.3.0 - Info Disclosure
CVSS 8.1
CVE-2016-8312
HIGH
Oracle FLEXCUBE <12.0.1 - Info Disclosure
CVSS 8.2
CVE-2016-8311
MEDIUM
Oracle FLEXCUBE Universal Banking 11.3.0 11.4.0 12.0.1-12.0.3 12.1.0 12.2.0 - Unauthorized Data Access
CVSS 6.5
CVE-2016-8309
MEDIUM
Oracle FLEXCUBE <12.3.0 - Info Disclosure
CVSS 4.3
CVE-2016-8307
MEDIUM
Oracle FLEXCUBE Universal Banking <12.2.0 - Unauthenticated RCE
CVSS 5.3
CVE-2016-8304
MEDIUM
Oracle FLEXCUBE Universal Banking <12.2.0 - RCE
CVSS 5.4
CVE-2016-8300
MEDIUM
Oracle FLEXCUBE <12.0.1 - Unauthorized Access
CVSS 5.3
CVE-2016-8299
MEDIUM
Oracle FLEXCUBE Universal Banking 11.3.0-12.2.0 - Unauthorized Data Manipulation and DoS
CVSS 6.3
CVE-2016-8298
HIGH
Oracle FLEXCUBE Private Banking 2.0.1/2.2.0/12.0.1 - Unauthorized Data Access/Modification
CVSS 8.1
CVE-2016-8297
HIGH
Oracle FLEXCUBE Universal Banking <12.2.0 - RCE
CVSS 8.1
CVE-2016-8282
MEDIUM
Oracle FLEXCUBE <12.0.1 - Info Disclosure
CVSS 6.1
CVE-2016-1920
MEDIUM
Samsung KNOX 1.0.0 - Man-in-the-Middle
CVSS 5.5
CVE-2016-8227
HIGH
Lenovo Transition - Privilege Escalation
CVSS 7.8
CVE-2016-7792
HIGH
Ubiquiti Networks UniFi AP AC Lite Firmware < 5.2.7 - Unauthenticated Database Modification via Direct Connection
CVSS 8.8
CVE-2016-8643
MEDIUM
Moodle < 2.7.16 - Improper Access Control via Web Services
CVSS 4.3
CVE-2016-8642
MEDIUM
Moodle < 2.7.16 and 3.1.0-3.1.3 - Improper Access Control in Question Engine
CVSS 5.3
CVE-2016-9016
HIGH
Firejail 0.9.38.4 - Command Injection
CVSS 8.8
CVE-2016-7794
CRITICAL
sociomantic git-hub < 0.10.2 - Remote Code Execution via Crafted Repository Name
CVSS 9.8
CVE-2016-7793
HIGH
sociomantic git-hub < 0.10.2 - Remote Code Execution via Crafted Repository URL
CVSS 8.8
CVE-2016-7545
HIGH
SELinux - Arbitrary Command Execution via TIOCSTI ioctl Call
CVSS 8.8
Details
Vulnerabilities
5,332