Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,270 vulnerabilities with CWE-284

CVE-2025-12480 CRITICAL KEV

Triofox < 16.7.10368.56560 - Improper Access Control via Initial Setup Pages

CVE-2025-64347 HIGH

Apollo Router < 1.61.12 and 2.8.1-rc.0 - Unauthorized Data Access via Renamed Access Control Directives

CVE-2025-12862 MEDIUM

projectworlds Online Notes Sharing Platform 1.0 - Unrestricted Upload

CVE-2025-63686 MEDIUM

GuoMinJim PersonManage - File Download

CVE-2025-27919 HIGH

AnyDesk < 9.0.4 - Unauthenticated Privilege Escalation via Full Access Profile Password Creation

CVE-2025-12808 MEDIUM

Dvls Server <2025.3.5.0 - Info Disclosure

CVE-2025-60784 MEDIUM

XiaozhangBang Voluntary Like System V8.8 - Info Disclosure

CVE-2025-43418 MEDIUM

iOS <18.7.2 & <26.1 - Info Disclosure

CVE-2025-57130 HIGH

ZwiiCMS < 13.6.07 - Authenticated Privilege Escalation via User Profile Modification

CVE-2025-58337 MEDIUM

Doris MCP Server <0.6.0 - Auth Bypass

CVE-2025-64110 HIGH

Cursor < 2.0 - Improper Access Control via cursorignore File Manipulation

CVE-2025-62721 MEDIUM

LinkAce < 2.4.0 - Authenticated Improper Access Control in RSS Feed Endpoints

CVE-2025-62720 MEDIUM

LinkAce < 2.4.0 - Authenticated Database Export via ExportController

CVE-2025-43502 HIGH

Safari < 26.1 - Privacy Preference Bypass via Sensitive Data Exposure

CVE-2025-43499 MEDIUM

macOS 14.0-14.8.1 - Unprotected User Data Exposure via Entitlement Bypass

CVE-2025-43498 MEDIUM

macOS Tahoe <26.1 - Info Disclosure

CVE-2025-43495 MEDIUM

iOS <18.7.2 & <26.1 - Info Disclosure

CVE-2025-43481 MEDIUM

macOS < 15.7.2 - Sandbox Escape via Improper Access Control

CVE-2025-43477 MEDIUM

macOS < 14.8.2, < 15.7.2, < 26.1 - Unprotected User Data Exposure via Log Entry Redaction

CVE-2025-43476 HIGH

macOS <15.7.2, <26.1, <14.8.2 - Privilege Escalation

CVE-2025-43454 HIGH

iPadOS < 26.1 - Improper Access Control

CVE-2025-43450 HIGH

iOS <18.7.2 & <26.1 - Info Disclosure

CVE-2025-43414 MEDIUM

macOS < 14.8.2, < 15.7.2, < 26.1 - Unprotected User Data Exposure via Shortcuts App

CVE-2025-43413 HIGH

Safari < 26.1 - Unauthenticated System-Wide Network Connection Observation via Sandbox Bypass

CVE-2025-43412 MEDIUM

macOS < 14.8.2, < 15.7.2, < 26.1 - File Quarantine Bypass via Sandbox Escape

Previous Page 47 of 211 Next

Details

Vulnerabilities 5,270

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy