Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,300 vulnerabilities with CWE-284

CVE-2024-36247 MEDIUM

Intel RAID Web Console - Authenticated Denial of Service via Adjacent Access

CVE-2024-34543 MEDIUM

Intel(R) RAID Web Console - Privilege Escalation

CVE-2024-32940 MEDIUM

Intel RAID Web Console - Authenticated Denial of Service via Adjacent Access

CVE-2024-28170 LOW

Intel RAID Web Console - Authenticated Information Disclosure via Improper Access Control

CVE-2024-39772 LOW

Mattermost Desktop App <=5.8.0 - Unauthenticated Screen Capture via JavaScript APIs

CVE-2024-8779 HIGH

OMFLOW 1.1.6.0-1.2.1.2 - Improper Access Control in System Settings

CVE-2024-8269 HIGH

MStore API - WordPress <4.15.3 - Info Disclosure

CVE-2024-44571 HIGH

RELY-PCIe <23.1.0 - Privilege Escalation

CVE-2024-20343 MEDIUM

Cisco IOS XR - Authenticated Arbitrary File Read via CLI Command Argument Validation Bypass

CVE-2024-43492 HIGH

Microsoft AutoUpdate < 4.72 - Elevation of Privilege

CVE-2024-43479 HIGH

Microsoft Power Automate 2.41-2.41.178.24249 - Remote Code Execution

CVE-2024-38220 CRITICAL

Azure Stack Hub - Privilege Escalation

CVE-2024-37341 HIGH

Microsoft SQL Server 2016-2022 - Elevation of Privilege via Azure Connect Feature Pack

CVE-2024-45323 MEDIUM

FortiEDR Manager API <6.2.2 - Info Disclosure

CVE-2024-37993 MEDIUM

SIMATIC RF360R < 2.2 - Unauthenticated Denial of Service via Ajax2App Instance Creation

CVE-2024-39580 MEDIUM

Dell PowerScale InsightIQ 5.0-5.1 - Authenticated Privilege Escalation via Improper Access Control

CVE-2024-6796 HIGH

Baxter Connex <8/30/2024 - Info Disclosure

CVE-2024-42023 HIGH

Veeam ONE 12.0.0.2498-12.2.0.4093 - Privilege Escalation via Improper Access Control

CVE-2024-42022 MEDIUM

Veeam ONE 12.0.0.2498-12.2.0.4093 - Improper Access Control in Configuration Files

CVE-2024-42021 MEDIUM

Veeam ONE 12.0.0.2498-12.2.0.4093 - Improper Access Control

CVE-2024-45392 HIGH

SuiteCRM <7.14.5-8.6.2 - Info Disclosure

CVE-2024-45170 HIGH

za-internet C-MOR Video Surveillance 5.2401 - Privilege Escalation

CVE-2024-45313 MEDIUM

Overleaf < 2024-07-17 (Toolkit) / < 2024-08-28 (docker-compose) - Improper Access Control

CVE-2024-45522 CRITICAL

linen < 2024-04-03 - Improper Access Control in Password Reset Domain Verification

CVE-2024-45509 MEDIUM

MISP < 2.4.197 - Improper Access Control in BookmarksController

Previous Page 97 of 212 Next

Details

Vulnerabilities 5,300

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy