The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,411 vulnerabilities with CWE-862
CVE-2020-10746
MEDIUM
Infinispan <10 - Privilege Escalation
CVSS 6.1
CVE-2020-14185
MEDIUM
Atlassian Jira <7.13.18, 8.0.0-8.5.9, 8.6.0-8.12.2 - Unauthenticated Issue Key Enumeration
CVSS 5.3
CVE-2020-0420
HIGH
Android 11 - Missing Authorization in GpuService.cpp setUpdatableDriverPath
CVSS 7.8
CVE-2020-0419
MEDIUM
Android 8.1-11 - Unauthenticated Cross-Profile URI Data Leak in PackageInstallerSession
CVSS 5.5
CVE-2020-0412
LOW
Android - Missing Authorization in ActivityManagerService setProcessMemoryTrimLevel
CVSS 3.3
CVE-2020-0378
MEDIUM
Android 9-11 - Missing Authorization in PasspointManager onWnmFrameReceived
CVSS 5.5
CVE-2020-0246
MEDIUM
Android 10-11 - Unauthenticated Local Information Disclosure via UiccAccessRule
CVSS 5.5
CVE-2020-15251
HIGH
Sopel <1.0.3 - Privilege Escalation
CVSS 7.7
CVE-2020-13626
MEDIUM
OnePlus App Locker < 2020-10-06 - Missing Authorization via Google Assistant
CVSS 4.6
CVE-2020-26598
HIGH
LG Android 8.0-9.0 - Unauthenticated TCP Connection Termination via Network Management Component
CVSS 7.5
CVE-2020-25781
MEDIUM
MantisBT < 2.24.3 - Missing Authorization for Private Attachment Download
CVSS 4.3
CVE-2020-13794
MEDIUM
Harbor 1.9.0-2.0.2 - Unauthenticated Exposure of Sensitive Information
CVSS 4.3
CVE-2020-13319
MEDIUM
GitLab <13.1.2-12.10.13 - Info Disclosure
CVSS 4.3
CVE-2020-13296
MEDIUM
GitLab >=10.7 <13.0.14, >=13.1.0 <13.1.8, >=13.2.0 <13.2.6 - Info D...
CVSS 6.5
CVE-2020-24718
HIGH
FreeBSD through 12.1 - Missing Authorization in bhyve VMCS/VMCB Operations
CVSS 8.2
CVE-2020-3524
MEDIUM
Cisco IOS XE ROM Monitor < 16.2(1r) - Unauthenticated Secure Boot Bypass via Debugging Configuration Option
CVSS 6.8
CVE-2020-3400
HIGH
Cisco IOS XE - Privilege Escalation
CVSS 8.8
CVE-2020-2285
MEDIUM
Jenkins Liquibase Runner Plugin <1.4.7 - Info Disclosure
CVSS 4.3
CVE-2020-2282
MEDIUM
Jenkins Implied Labels Plugin <0.6 - Privilege Escalation
CVSS 4.3
CVE-2020-0327
MEDIUM
Android 11 - Missing Authorization Leading to Local Information Disclosure
CVSS 5.5
CVE-2020-0316
MEDIUM
Android 11 - Unauthenticated Local Information Disclosure in Telephony
CVSS 5.5
CVE-2020-0299
HIGH
Android 11 - Missing Authorization in Bluetooth Metadata Handling
CVSS 7.8
CVE-2020-0298
HIGH
Android 11 - Missing Authorization in Bluetooth Enabled State Control
CVSS 7.8
CVE-2020-0285
MEDIUM
Android 11 - Missing Authorization in Telephony
CVSS 5.5
CVE-2020-0284
MEDIUM
Android 11 - Missing Authorization in Telephony
CVSS 5.5
Details
Vulnerabilities
8,411
Exploit Likelihood
High