Register
Login
Toggle navigation
SaaS Solutions
Vulnerability Intelligence
Pricing
Vulnerabilities
Reports
Blog
Contact Us
Main
Vulnerability Database
CWE List
With exploit
With patch
CWE-639 - Authorization Bypass Through User-Controlled Key
Description
The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.
Latest vulnerabilities for CWE-639
Multiple vulnerabilities in IBM Operations Analytics Predictive Insights
2024-03-28
High
Yes
Multiple vulnerabilities in IBM Db2 Web Query for i
2024-03-15
High
Yes
Authorization bypass through user-controlled key in IBM Event Streams
2024-03-15
Medium
Yes
Improper access control in FortiOS and FortiProxy bookmark feature
2024-03-12
Low
Yes
Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management
2024-02-29
High
Yes
Multiple vulnerabilities in Juniper Secure Analytics (JSA)
2024-02-29
Medium
Yes
Multiple vulnerabilities in IBM Watson Machine Learning Accelerator on Cloud Pak for Data
2024-02-28
High
Yes
Multiple vulnerabilities in Moodle
2024-02-23
Medium
Yes
Multiple vulnerabilities in IBM QRadar SIEM
2024-02-15
Medium
Yes
Multiple vulnerabilities in Primavera Unifier
2024-01-17
Medium
Yes
References
Description of CWE-639 on Mitre website