Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,300 vulnerabilities with CWE-284

CVE-2024-44271 LOW

macOS < 15.2 - Unauthorized Screen Recording

CVE-2024-46412 MEDIUM

Rebuild 3.7.7 - Unauthenticated Authentication Bypass via /commons/ip-location GET Request

CVE-2024-53496 CRITICAL

my-site 1.0.2.RELEASE - Unauthenticated Improper Access Control in doFilter Function

CVE-2024-53494 HIGH

SpringBootBlog v1.0.0 - Privilege Escalation

CVE-2024-45438 CRITICAL

SpamTitan Email Security Gateway <8.00.101-8.01.14 - Unauthenticate...

CVE-2024-57155 CRITICAL

radar 1.0.8 - Unauthenticated Improper Access Control

CVE-2024-57154 CRITICAL

dts-shop <0.0.1-SNAPSHOT - Auth Bypass

CVE-2024-57152 HIGH

my-site 1.0.2 - Unauthenticated Sensitive Component Access via BaseInterceptor PreHandle

CVE-2024-53495 HIGH

my-site 1.0.2.RELEASE - Unauthenticated Improper Access Control in preHandle Function

CVE-2024-57157 CRITICAL

Jantent 1.1 - Unauthenticated Improper Access Control

CVE-2024-42048 MEDIUM

OpenOrange Business Framework <1.15.5 - Privilege Escalation

CVE-2024-55402 MEDIUM

4cstrategies exonaut < 21.6.2.1-1 - Improper Access Control

CVE-2024-42655 HIGH

NanoMQ 0.21.10 - Improper Access Control via MQTT Wildcard Bypass

CVE-2024-32124 MEDIUM

FortiIsolator <2.4.4, <2.4.3, <2.3 - Privilege Escalation

CVE-2024-52928 CRITICAL

Arc < 1.26.1 - Unauthenticated Permission Escalation via Site Settings Bypass

CVE-2024-45208 CRITICAL

Versa Director 21.2.2, 21.2.3, 22.1.1-22.1.4 - Unauthenticated Remote Code Execution via NCS Service on Port 4566

CVE-2024-57190 CRITICAL

erxes < 1.6.1 - Unauthenticated Authentication Bypass via User HTTP Header

CVE-2024-53010 HIGH

Qualcomm AQT1000 Firmware - Memory Corruption via VM Attachment

CVE-2024-57336 MEDIUM

M2Soft CROWNIX Report & ERS <7.4.3.599, <8.0.3.79 - Privilege Escal...

CVE-2024-45371 MEDIUM

Intel Arc & Iris Xe <32.0.101.6077 - DoS

CVE-2024-45333 HIGH

Intel(R) Data Center GPU Flex Series - DoS

CVE-2024-43101 MEDIUM

Intel(R) Data Center GPU Flex Series - DoS

CVE-2024-39758 MEDIUM

Intel Arc & Iris Xe <31.0.101.4032 - DoS

CVE-2024-6364 MEDIUM

Absolute Persistence <2.8 - Privilege Escalation

CVE-2024-49842 HIGH

Qualcomm FastConnect and AQT1000/AR8035 Firmware - Memory Corruption in Protected VM Address Space

Previous Page 87 of 212 Next

Details

Vulnerabilities 5,300

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy