CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,417 vulnerabilities with CWE-862
CVE-2020-0327 MEDIUM
Android 11 - Missing Authorization Leading to Local Information Disclosure
CVSS 5.5
CVE-2020-0316 MEDIUM
Android 11 - Unauthenticated Local Information Disclosure in Telephony
CVSS 5.5
CVE-2020-0299 HIGH
Android 11 - Missing Authorization in Bluetooth Metadata Handling
CVSS 7.8
CVE-2020-0298 HIGH
Android 11 - Missing Authorization in Bluetooth Enabled State Control
CVSS 7.8
CVE-2020-0285 MEDIUM
Android 11 - Missing Authorization in Telephony
CVSS 5.5
CVE-2020-0284 MEDIUM
Android 11 - Missing Authorization in Telephony
CVSS 5.5
CVE-2020-0276 MEDIUM
Android 11 - Missing Authorization in Telephony
CVSS 5.5
CVE-2020-0265 MEDIUM
Android 11 - Local Information Disclosure via Telephony Missing Permission Checks
CVSS 5.5
CVE-2020-0089 HIGH
Android 11 - Missing Authorization in Audio Server
CVSS 7.8
CVE-2020-0375 HIGH
Android 11 - Unauthenticated Permission Bypass in Telephony
CVSS 7.8
CVE-2020-0372 MEDIUM
Android 11 - Unauthenticated Local Information Disclosure via ActivityManager Missing Permission Check
CVSS 5.5
CVE-2020-0343 MEDIUM
Android 11 - Unauthenticated Local Information Disclosure via NetworkStatsService
CVSS 5.5
CVE-2020-0341 HIGH
Android 11 - Missing Authorization in DisplayManager
CVSS 7.8
CVE-2020-0317 MEDIUM
Android 11 - Unauthenticated Local Information Disclosure via UsageStatsManager
CVSS 5.5
CVE-2020-0314 MEDIUM
Android 11 - Unauthenticated Information Disclosure via AudioService
CVSS 5.5
CVE-2020-0293 MEDIUM
Android 11 - Unauthenticated Sensitive Network State Access via Java Network APIs
CVSS 5.5
CVE-2020-0290 MEDIUM
Android 11 - Unauthenticated Local Information Disclosure via PackageManager Permission Check Bypass
CVSS 5.5
CVE-2020-0289 MEDIUM
Android 11 - Unauthenticated Local Information Disclosure via PackageManager Permission Bypass
CVSS 5.5
CVE-2020-0288 MEDIUM
Android 11 - Unauthenticated Local Information Disclosure via PackageManager Permission Bypass
CVSS 5.5
CVE-2020-0277 HIGH
Android 11 - Unauthenticated Permissions Bypass in NetworkPolicyManagerService
CVSS 7.8
CVE-2020-0266 HIGH
Android 11 - Unauthenticated Factory Reset Protection Bypass
CVSS 7.8
CVE-2020-0387 HIGH
Android - Missing Authorization Leading to Tapjacking and Privilege Escalation
CVSS 7.8
CVE-2020-0401 HIGH
Android - Missing Authorization in PackageManagerService
CVSS 7.8
CVE-2020-14306 HIGH
istio-operator < 1.1.3 - Incorrect Access Control via Custom Gateway/Pod Deployment
CVSS 8.8
CVE-2020-2272 MEDIUM
Jenkins ElasTest Plugin <1.2.1 - Privilege Escalation
CVSS 4.3
Details
Vulnerabilities 8,417
Exploit Likelihood High