CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,332 vulnerabilities with CWE-284
CVE-2016-8323 MEDIUM
Oracle FLEXCUBE <11.5.0 - Unauthorized Update
CVSS 5.4
CVE-2016-8320 MEDIUM
Oracle FLEXCUBE <12.0.2 - Info Disclosure
CVSS 6.1
CVE-2016-8319 MEDIUM
Oracle FLEXCUBE <12.3.0 - Unauth RCE
CVSS 6.1
CVE-2016-8317 MEDIUM
Oracle FLEXCUBE <12.3.0 - Info Disclosure
CVSS 5.3
CVE-2016-8316 MEDIUM
Oracle FLEXCUBE <12.3.0 - Info Disclosure
CVSS 5.4
CVE-2016-8315 HIGH
Oracle FLEXCUBE <12.3.0 - Info Disclosure
CVSS 8.1
CVE-2016-8312 HIGH
Oracle FLEXCUBE <12.0.1 - Info Disclosure
CVSS 8.2
CVE-2016-8311 MEDIUM
Oracle FLEXCUBE Universal Banking 11.3.0 11.4.0 12.0.1-12.0.3 12.1.0 12.2.0 - Unauthorized Data Access
CVSS 6.5
CVE-2016-8309 MEDIUM
Oracle FLEXCUBE <12.3.0 - Info Disclosure
CVSS 4.3
CVE-2016-8307 MEDIUM
Oracle FLEXCUBE Universal Banking <12.2.0 - Unauthenticated RCE
CVSS 5.3
CVE-2016-8304 MEDIUM
Oracle FLEXCUBE Universal Banking <12.2.0 - RCE
CVSS 5.4
CVE-2016-8300 MEDIUM
Oracle FLEXCUBE <12.0.1 - Unauthorized Access
CVSS 5.3
CVE-2016-8299 MEDIUM
Oracle FLEXCUBE Universal Banking 11.3.0-12.2.0 - Unauthorized Data Manipulation and DoS
CVSS 6.3
CVE-2016-8298 HIGH
Oracle FLEXCUBE Private Banking 2.0.1/2.2.0/12.0.1 - Unauthorized Data Access/Modification
CVSS 8.1
CVE-2016-8297 HIGH
Oracle FLEXCUBE Universal Banking <12.2.0 - RCE
CVSS 8.1
CVE-2016-8282 MEDIUM
Oracle FLEXCUBE <12.0.1 - Info Disclosure
CVSS 6.1
CVE-2016-1920 MEDIUM
Samsung KNOX 1.0.0 - Man-in-the-Middle
CVSS 5.5
CVE-2016-8227 HIGH
Lenovo Transition - Privilege Escalation
CVSS 7.8
CVE-2016-7792 HIGH
Ubiquiti Networks UniFi AP AC Lite Firmware < 5.2.7 - Unauthenticated Database Modification via Direct Connection
CVSS 8.8
CVE-2016-8643 MEDIUM
Moodle < 2.7.16 - Improper Access Control via Web Services
CVSS 4.3
CVE-2016-8642 MEDIUM
Moodle < 2.7.16 and 3.1.0-3.1.3 - Improper Access Control in Question Engine
CVSS 5.3
CVE-2016-9016 HIGH
Firejail 0.9.38.4 - Command Injection
CVSS 8.8
CVE-2016-7794 CRITICAL
sociomantic git-hub < 0.10.2 - Remote Code Execution via Crafted Repository Name
CVSS 9.8
CVE-2016-7793 HIGH
sociomantic git-hub < 0.10.2 - Remote Code Execution via Crafted Repository URL
CVSS 8.8
CVE-2016-7545 HIGH
SELinux - Arbitrary Command Execution via TIOCSTI ioctl Call
CVSS 8.8
Details
Vulnerabilities 5,332