CWE-842

10 CVEs classified under CWE-842. Browse by severity and year.

Top CVEs for CWE-842
CVESeverityScorePublishedSummary
CVE-2024-10082High8.72024-11-06CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Authentication method confusion allows…
CVE-2024-25632High8.62024-10-01eLabFTW is an open source electronic lab notebook for research labs. In the context of eLabFTW, an administrator is a user account with certain privileges to m…
CVE-2023-25575High7.72023-02-28API Platform Core is the server component of API Platform: hypermedia and GraphQL APIs. Resource properties secured with the `security` option of the `ApiPlatf…
CVE-2022-45097Medium6.32023-02-01 Dell PowerScale OneFS 9.0.0.x-9.4.0.x contains an Incorrect User Management vulnerability. A low privileged network attacker could potentially exploit this vu…
CVE-2022-31007Medium4.92022-05-31eLabFTW is an electronic lab notebook manager for research teams. Prior to version 4.3.0, a vulnerability allows an authenticated user with an administrator ro…
CVE-2026-69702026-04-27authd prior to version 0.6.4 contains a logic error in primary group ID assignment that can lead to local privilege escalation. When a user's primary group ID…
CVE-2024-94122024-10-08An improper authorization vulnerability exists in the Rockwell Automation affected products that could allow an unauthorized user to sign in. While removal of…
CVE-2022-36502023-01-17A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in the form of a crash dump, and dump…
CVE-2022-29902022-09-13An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or possible data modificat…
CVE-2022-29892022-09-13An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modificati…