Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-863

CWE-863

High likelihood

Incorrect Authorization

Parent: CWE-285 - Improper Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

3,099 vulnerabilities with CWE-863

CVE-2021-41528 MEDIUM

RISC Platform <saas-2021-12-29 - Privilege Escalation

CVE-2021-26387 LOW

AMD EPYC and Ryzen Processors - Insufficient Access Control in ASP Kernel

CVE-2021-4334 HIGH

Fancy Product Designer <4.6.9 - Privilege Escalation

CVE-2021-46891 CRITICAL

Huawei EMUI and HarmonyOS - Exposure of Sensitive Information via GPU Module Permission Verification

CVE-2021-46890 CRITICAL

Huawei EMUI and HarmonyOS - Incorrect Authorization in GPU Module

CVE-2021-30205 MEDIUM

dzzoffice 2.02.1_SC_UTF8 - Info Disclosure

CVE-2021-4352 MEDIUM

JobSearch WP Job Board <1.8.1 - Auth Bypass

CVE-2021-44465 MEDIUM

Odoo < 13.0 - Authenticated Improper Access Control via RPC Requests

CVE-2021-23203 HIGH

Odoo Community 14.0-15.0 and Odoo Enterprise 14.0-15.0 - Improper Access Control in Reporting Engine

CVE-2021-32163 CRITICAL

Linuxfoundation Modular Open Smart Network - Incorrect Authorization

CVE-2021-45466 CRITICAL

Control Web Panel < 0.9.8.1107 - Unauthenticated Arbitrary File Write via DHCP API

CVE-2021-4275 MEDIUM

pyambic-pentameter - Cross-Site Request Forgery

CVE-2021-4268 MEDIUM

phpRedisAdmin < 1.18.0 - Cross-Site Request Forgery

CVE-2021-40692 MEDIUM

Moodle - Insufficient Capability Checks Leading to Information Disclosure

CVE-2021-3563 HIGH

OpenStack Keystone - Incorrect Authorization via Truncated Application Secret Verification

CVE-2021-3763 MEDIUM

Red Hat AMQ Broker 7.8 - Info Disclosure

CVE-2021-37409 HIGH

Intel Wireless and Killer WiFi Firmware - Privilege Escalation via Improper Access Control

CVE-2021-35112 HIGH

Qualcomm APQ8009W Firmware - Incorrect Authorization in Register Configuration

CVE-2021-3956 MEDIUM

Lenovo XClarity Controller < 7.22_cdi382o - LDAP Auth Bypass (Unauthenticated Read-Only Access)

CVE-2021-42192 HIGH

konga 0.14.9 - Incorrect Authorization

CVE-2021-36778 HIGH

SUSE Rancher < 2.5.12 and 2.6.0-2.6.3 - Incorrect Authorization

CVE-2021-28505 HIGH

Arista EOS 4.26-4.26.4m - Improper Access Control in VXLAN Match Rule

CVE-2021-39802 HIGH

Android Kernel - Local Privilege Escalation via Shared Memory Permissions Bypass

CVE-2021-39799 HIGH

Android - Local Privilege Escalation via AttributionSource Input Validation Bypass

CVE-2021-0694 HIGH

Android 11 - Local Privilege Escalation via Insufficient Background Restrictions

Previous Page 91 of 124 Next

Details

Vulnerabilities 3,099

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy