CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,402 vulnerabilities with CWE-862
CVE-2022-47324 MEDIUM
Android - Local Information Disclosure via Missing Permission Check in WLAN Driver
CVSS 5.5
CVE-2022-44421 MEDIUM
Android - Missing Authorization in WLAN Driver
CVSS 5.5
CVE-2022-48302 HIGH
Huawei EMUI and HarmonyOS - Missing Authorization in AMS Module
CVSS 7.5
CVE-2022-21953 HIGH
SUSE Rancher <2.5.17, <2.6.10, <2.7.1 - Privilege Escalation
CVSS 7.4
CVE-2022-48166 HIGH
Wavlink WL-WN530HG4 M30HG4.V5030.201217 - Unauthenticated Configuration and Log File Download
CVSS 7.5
CVE-2022-42909 MEDIUM
WEPA Print Away - Authenticated Missing Authorization for Document Print Orders
CVSS 6.5
CVE-2022-4872 MEDIUM
Chained Products < 2.12.0 - Unauthenticated Missing Authorization
CVSS 4.3
CVE-2022-39811 CRITICAL
Italtel NetMatch-S CI 5.2.0-20211008 - Missing Authorization in Advanced Settings and File Uploader
CVSS 9.1
CVE-2022-3482 MEDIUM
GitLab 11.3-15.3.4, 15.4-15.4.3, 15.5-15.5.1 - Unauthenticated Release Name Exposure
CVSS 5.3
CVE-2022-41417 CRITICAL
BlogEngine.NET <3.3.8.0 - Path Traversal
CVSS 9.8
CVE-2022-4103 MEDIUM
Royal Elementor Addons < 1.3.56 - Authenticated Missing Authorization for Template Creation
CVSS 4.3
CVE-2022-4102 LOW
Royal Elementor Addons < 1.3.56 - Authenticated Arbitrary Post Deletion via Template Deletion
CVSS 3.1
CVE-2022-3923 MEDIUM
ActiveCampaign for WooCommerce < 1.9.8 - Authenticated Missing Authorization via Error Log Cleanup AJAX Action
CVSS 4.3
CVE-2022-44439 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-44438 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-44437 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-44436 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-44435 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-44434 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-44424 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-44423 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-44422 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-39104 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service in Contacts Service
CVSS 5.5
CVE-2022-39088 MEDIUM
Network Service - Privilege Escalation
CVSS 6.7
CVE-2022-39087 MEDIUM
Network Service - Privilege Escalation
CVSS 6.7
Details
Vulnerabilities 8,402
Exploit Likelihood High