The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
2,566 vulnerabilities with CWE-863
CVE-2026-30854
Parse Server 9.3.1-alpha.3-9.5.0-alpha.10 - Info Disclosure
CVE-2026-29196
Netmaker <1.5.0 - Info Disclosure
CVE-2026-29195
Netmaker <1.5.0 - Privilege Escalation
CVE-2026-29194
Netmaker <1.5.0 - Auth Bypass
CVE-2026-30820
Flowise <3.0.13 - Privilege Escalation
CVE-2026-30241
Mercurius <16.8.0 - DoS
CVE-2026-30229
Parse Server <8.6.6/9.5.0-alpha.4 - Auth Bypass
CVE-2026-30228
Parse Server <8.6.5/9.5.0-alpha.3 - Auth Bypass
CVE-2026-29182
Parse Server <8.6.4/9.4.1-alpha.3 - Privilege Escalation
CVE-2026-29087
HIGH
@hono/node-server <1.19.10 - Auth Bypass
CVSS 7.5
CVE-2026-23925
Zabbix - Privilege Escalation
CVE-2026-28726
MEDIUM
Acronis Cyber Protect 17 - Info Disclosure
CVSS 4.3
CVE-2026-28724
MEDIUM
Acronis Cyber Protect 17 <41186 - Auth Bypass
CVSS 4.3
CVE-2026-28723
MEDIUM
Acronis Cyber Protect 17 <41186 - Auth Bypass
CVSS 4.3
CVE-2026-28720
MEDIUM
Acronis Cyber Protect 17 - Privilege Escalation
CVSS 4.3
CVE-2026-28719
MEDIUM
Acronis Cyber Protect 17 - Privilege Escalation
CVSS 4.3
CVE-2026-28716
MEDIUM
Acronis Cyber Protect 17 <41186 - Info Disclosure
CVSS 4.4
CVE-2026-28715
MEDIUM
Acronis Cyber Protect 17 - Info Disclosure
CVSS 6.5
CVE-2026-28709
MEDIUM
Acronis Cyber Protect 17 <41186 - Auth Bypass
CVSS 4.3
CVE-2026-28474
CRITICAL
OpenClaw Nextcloud Talk <2026.2.6 - Auth Bypass
CVSS 9.8
CVE-2026-28473
HIGH
OpenClaw <2026.2.2 - Auth Bypass
CVSS 8.1
CVE-2026-28466
CRITICAL
OpenClaw <2026.2.14 - Command Injection
CVSS 9.9
CVE-2026-28392
HIGH
OpenClaw <2026.2.14 - Privilege Escalation
CVSS 7.5
CVE-2026-28790
HIGH
OliveTin <3000.11.0 - DoS
CVSS 7.5
CVE-2026-21621
hexpm hexpm/hexpm - Privilege Escalation
Details
Vulnerabilities
2,566
Exploit Likelihood
High