CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,345 vulnerabilities with CWE-284
CVE-2016-5661 HIGH
Accela Civic Platform Citizen Access Portal - Authenticated Remote Code Execution via File Upload Parameters
CVSS 8.8
CVE-2016-0357 MEDIUM
IBM Security Identity Manager (ISIM) Virtual Appliance <7.0.1.1 - CSRF
CVSS 4.3
CVE-2016-0340 HIGH
IBM Security Identity Manager Virtual Appliance <7.0.1.1 - Info Dis...
CVSS 7.4
CVE-2016-0339 MEDIUM
IBM Security Identity Manager (ISIM) Virtual Appliance <7.0.1.1 - I...
CVSS 5.6
CVE-2016-5807 HIGH
Tollgrade LightHouse SMS <5.1-3 - Auth Bypass
CVSS 8.1
CVE-2016-5109 MEDIUM
Citrix Worx Home and XenMobile MDX Toolkit - Improper Access Control via Touch ID Bypass
CVSS 4.3
CVE-2016-5008 CRITICAL
libvirt < 2.0.0 - Unauthenticated VNC Authentication Bypass via Empty Password
CVSS 9.8
CVE-2016-4215 CRITICAL
Adobe Reader/Acrobat <11.0.17-15.017.20050 - Auth Bypass
CVSS 9.8
CVE-2016-3276 LOW
Microsoft Internet Explorer 11 and Edge - Content Spoofing via Crafted URL
CVSS 3.1
CVE-2016-3274 LOW
Microsoft Edge and Internet Explorer 9-11 - Content Spoofing via Crafted URL
CVSS 3.1
CVE-2016-3245 MEDIUM
Microsoft Internet Explorer 9-11 - Security Feature Bypass via TCP Connection Trick
CVSS 6.5
CVE-2016-3244 MEDIUM
Microsoft Edge - ASLR Bypass via Crafted Web Site
CVSS 4.3
CVE-2016-3818 MEDIUM
Android libc - Denial of Service via Crafted File
CVSS 5.5
CVE-2016-0315 HIGH
IBM Jazz Reporting Service <6.0.1 - Privilege Escalation
CVSS 8.8
CVE-2016-4979 HIGH
Apache HTTP Server 2.4.18-2.4.20 - Authentication Bypass via HTTP/2 Request Handling
CVSS 7.5
CVE-2016-0906 HIGH
EMC Avamar <7.2.1 - Info Disclosure
CVSS 8.8
CVE-2016-0391 CRITICAL
IBM Watson Developer Cloud - Info Disclosure
CVSS 9.8
CVE-2016-0349 MEDIUM
IBM Business Process Manager <8.5.7 - Auth Bypass
CVSS 6.5
CVE-2016-5101 HIGH
Opera Mail - Remote Code Execution via Crafted Email Message
CVSS 8.8
CVE-2016-1237 MEDIUM
Linux kernel <4.6.3 - Privilege Escalation
CVSS 5.5
CVE-2016-0304 HIGH
IBM Domino <9.0.1 FP6 - Auth Bypass
CVSS 8.1
CVE-2016-3713 HIGH
Linux kernel <4.6.1 - Info Disclosure
CVSS 7.1
CVE-2016-3707 HIGH
Linux kernel-rt <3.10.0-327.22.1 - RCE
CVSS 8.1
CVE-2016-0279 HIGH
IBM Domino <9.0.1 - Buffer Overflow
CVSS 7.8
CVE-2016-0278 HIGH
IBM Domino <9.0.1 - Buffer Overflow
CVSS 7.8
Details
Vulnerabilities 5,345