Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-863

CWE-863

High likelihood

Incorrect Authorization

Parent: CWE-285 - Improper Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

3,088 vulnerabilities with CWE-863

CVE-2023-27716 CRITICAL

kafkaui-lite 1.2.11 - Incorrect Authorization

CVE-2023-29766 HIGH

CrossX 1.15.3 - Privilege Escalation via Database Files

CVE-2023-29761 MEDIUM

Sleep 20230303 - Unauthenticated Denial of Service via SharedPreference Manipulation

CVE-2023-29759 MEDIUM

FlightAware 5.8.0 - Unauthorized Persistent Denial of Service via Database Manipulation

CVE-2023-29758 MEDIUM

Blue Light Filter 1.5.5 - Unauthorized Denial of Service via SharedPreference Manipulation

CVE-2023-29752 HIGH

Facemoji Emoji Keyboard 2.9.1.2 - Incorrect Authorization

CVE-2023-32749 HIGH

Pydio Cells < 3.0.12 - Unauthenticated Privilege Escalation via External User Role Assignment

CVE-2023-34958 MEDIUM

Chamilo LMS 1.11.0-1.11.18 - Incorrect Authorization in Student Document Download

CVE-2023-33651 HIGH

Sitecore XP/XM/XC <13.0 - Auth Bypass

CVE-2023-32683 LOW

Synapse < 1.85.0 - Server-Side Request Forgery via URL Preview Bypass

CVE-2023-22833 HIGH

Palantir Foundry 2.519.0-2.531.0 - Authenticated Access Control Bypass

CVE-2023-1779 MEDIUM

MB Connect Lines <2.13.3 - Info Disclosure

CVE-2023-21670 HIGH

GPU Subsystem < Privileged Mode - Command Injection

CVE-2023-3027 HIGH

Grc-policy-propagator - Privilege Escalation

CVE-2023-3066 HIGH

Mobatime mobile app <1.3.20 - Auth Bypass

CVE-2023-25749 MEDIUM

Firefox < 111.0 - Incorrect Authorization via Intent Launch Confirmation Bypass

CVE-2023-25729 HIGH

Firefox < 110.0, Firefox ESR < 102.8, Thunderbird < 102.8 - Incorrect Authorization via ExpandedPrincipals

CVE-2023-23604 MEDIUM

Firefox < 109.0 - Incorrect Authorization via DOMParser SystemPrincipal Bypass

CVE-2023-3033 MEDIUM

Mobatime <6.7.22 - Privilege Escalation

CVE-2023-28698 CRITICAL

Wade Graphic Design FANTSY - Privilege Escalation

CVE-2023-34219 MEDIUM

JetBrains TeamCity < 2023.05 - Improper Authorization via REST API

CVE-2023-34218 CRITICAL

JetBrains TeamCity < 2023.05 - Incorrect Authorization Bypass

CVE-2023-28352 HIGH

Faronics Insight 10.0.19045 - Incorrect Authorization via UDP Broadcast Discovery

CVE-2023-24600 MEDIUM

OX App Suite <7.10.6-rev37 - Auth Bypass

CVE-2023-33779 HIGH

XXL-Job <2.4.1 - Privilege Escalation

Previous Page 73 of 124 Next

Details

Vulnerabilities 3,088

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy