CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,222 vulnerabilities with CWE-862
CVE-2026-25164 HIGH
OpenEMR < 8.0.0 - Missing Authorization for Document and Insurance REST API Routes
CVSS 8.1
CVE-2026-3193 LOW
Chia Blockchain 2.1.0 - Cross-Site Request Forgery via /send_transaction
CVSS 3.1
CVE-2026-28195 MEDIUM
JetBrains TeamCity <2025.11.3 - Auth Bypass
CVSS 4.3
CVE-2026-28193 HIGH
JetBrains YouTrack <2025.3.121962 - Auth Bypass
CVSS 8.8
CVE-2026-26104 MEDIUM
Red Hat Enterprise Linux - Unauthenticated LUKS Encryption Header Backup via udisks D-Bus Method
CVSS 5.5
CVE-2026-26103 HIGH
Red Hat Enterprise Linux - Unauthenticated Denial of Service via udisks LUKS Header Restoration
CVSS 7.1
CVE-2026-2301 MEDIUM
Post Duplicator <3.0.8 - Privilege Escalation
CVSS 4.3
CVE-2026-1916 HIGH
WPGSI Spreadsheet Integration 3.8.3 - Auth Bypass
CVSS 7.5
CVE-2026-27608 HIGH
Parse Dashboard 7.3.0-9.0.0 - Auth Bypass
CVSS 8.1
CVE-2026-25131 HIGH
OpenEMR <8.0.0 - Privilege Escalation
CVSS 8.8
CVE-2026-25124 MEDIUM
OpenEMR <8.0.0 - Privilege Escalation
CVSS 6.5
CVE-2026-22765 HIGH
Dell Wyse Management Suite <5.5 - Privilege Escalation
CVSS 8.8
CVE-2026-27468 HIGH
Mastodon 4.4.0-4.4.13/4.5.0-4.5.6 - Auth Bypass
CVSS 8.2
CVE-2026-1787 MEDIUM
LearnPress Export Import 4.1.0 - Auth Bypass
CVSS 4.8
CVE-2026-27484 MEDIUM
OpenClaw <2026.2.17 - Privilege Escalation
CVSS 4.3
CVE-2026-27471 CRITICAL
ERP <=15.98.0/16.0.0-rc.1-16.6.0 - Auth Bypass
CVSS 9.1
CVE-2026-2039 CRITICAL
GFI Archiver - Unauthenticated Missing Authorization in MArc.Store.Remoting.exe
CVSS 9.8
CVE-2026-2038 CRITICAL
GFI Archiver - Unauthenticated Missing Authorization in MArc.Core.Remoting.exe
CVSS 9.8
CVE-2026-27111 MEDIUM
Kargo 1.9.0-1.9.2 - Privilege Escalation
CVSS 5.0
CVE-2026-24946 MEDIUM
Print Invoice & Delivery Notes for WooCommerce <=5.8.0 - Auth Bypass
CVSS 6.5
CVE-2026-24944 MEDIUM
weDevs Subscribe2 <=10.44 - Auth Bypass
CVSS 6.5
CVE-2026-24941 HIGH
WP Job Portal <=2.4.4 - Privilege Escalation
CVSS 7.5
CVE-2026-22351 HIGH
WP FullCalendar <=1.6 - Auth Bypass
CVSS 7.5
CVE-2026-22350 MEDIUM
PDF for Elementor Forms <=6.3.1 - Auth Bypass
CVSS 6.5
CVE-2026-2819 MEDIUM
Dromara RuoYi-Vue-Plus <5.5.3 - Auth Bypass
CVSS 6.3
Details
Vulnerabilities 8,222
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits