Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-863

CWE-863

High likelihood

Incorrect Authorization

Parent: CWE-285 - Improper Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

3,047 vulnerabilities with CWE-863

CVE-2025-13480 MEDIUM

Incorrect authorization in Fudo Enterprise

CVE-2025-40897 HIGH

Incorrect authorization for Threat Intelligence in Guardian/CMC before 26.0.0

CVE-2025-68153 MEDIUM

Juju: Resource poisoning

CVE-2025-68152 MEDIUM

Juju: Read All Controller Logs From Compromised Workload

CVE-2025-71278 HIGH

XenForo OAuth2 Unauthorized Scope Request

CVE-2025-69196 MEDIUM

FastMCP OAuth Proxy token reuse across MCP servers

CVE-2025-12555 MEDIUM

GitLab CE/EE 15.1-18.7.5/18.8-18.8.5/18.9-18.9.1 - Info Disclosure

CVE-2025-13734 MEDIUM

IBM DOORS Next 7.1-7.2 - Privilege Escalation

CVE-2025-9572 MEDIUM

Foreman 1.22.0-3.16.1 - Incorrect Authorization via GraphQL API

CVE-2025-4960 HIGH

EPSON InstallNavi Helper - Privilege Escalation

CVE-2025-15342 MEDIUM

Tanium Reputation 6.3.0-6.3.227 - Incorrect Authorization

CVE-2025-15321 LOW

Tanium TanOS 1.8.3-1.8.3.0196 - Incorrect Authorization

CVE-2025-70997 MEDIUM

eladmin < 2.7 - Unauthenticated Arbitrary Password Reset

CVE-2025-67856 MEDIUM

Moodle < 4.1.22 - Incorrect Authorization in Badge Awarding Process

CVE-2025-15395 MEDIUM

IBM Jazz Foundation 7.0.3-7.0.3 iFix019 and 7.1.0-7.1.0 iFix005 - Incorrect Authorization

CVE-2025-15525 MEDIUM

Ajax Load More - Unauthorized Access

CVE-2025-15322 MEDIUM

Tanium Server - Privilege Escalation

CVE-2025-15288 LOW

Tanium Interact - Privilege Escalation

CVE-2025-69289 MEDIUM

Discourse < 3.5.4 - Privilege Escalation via Email Change Bypass

CVE-2025-69218 MEDIUM

Discourse < 3.5.4, < 2025.11.2, < 2025.12.1, < 2026.1.0 - Incorrect Authorization in Admin Report

CVE-2025-68933 MEDIUM

Discourse < 3.5.4, < 2025.11.2, < 2025.12.1, < 2026.1.0 - Broken Access Control via Post Ownership Transfer

CVE-2025-68666 MEDIUM

Discourse <3.5.4, <2025.11.2, <2025.12.1, <2026.1.0 - Info Disclosure

CVE-2025-13985 MEDIUM

Drupal Entity Share < 3.13.0 - Incorrect Authorization via Forceful Browsing

CVE-2025-68660 MEDIUM

Discourse <3.5.4,2025.11.2,2025.12.1,2026.1.0 - Auth Bypass

CVE-2025-66719 CRITICAL

Free5gc NRF 1.4.0 - Incorrect Authorization via Crafted targetNF Value

Previous Page 24 of 122 Next

Details

Vulnerabilities 3,047

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy