CWE-863 - Incorrect Authorization

Description

Authorization of user is the process of identiication of actor's identity and verification of his access to certain information or conducting actions. Under the influence of the weakness, software isn't able to perform checking properly that allows attackers to get access not only to potentially sensitive information and modify it, but also to privileged functionality.
The vulnerability may result in information exposures, denial of service, and arbitrary code execution. The weakness is intoduced during Architecture and Design, Implementaton, Operation stages.

Latest vulnerabilities for CWE-863

Multiple vulnerabilities in Netcool Operations Insight 2024-04-03
High Yes

Multiple vulnerabilities in JetBrains TeamCity 2024-04-02
Medium Yes

Incorrect authorization in Siemens Siveillance Control 2024-03-13
Low Yes

Multiple vulnerabilities in IBM Cloud Pak for AIOps 2024-02-29
High Yes

Incorrect authorization in IBM Maximo Application Suite - Predict Component 2024-02-29
Low Yes

Multiple vulnerabilities in IBM Watson Machine Learning Accelerator on Cloud Pak for Data 2024-02-28
High Yes

Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management Security Services 2024-02-22
High Yes

libpod update for BuildKit 2024-02-07
High Yes

Multiple vulnerabilities in BuildKit 2024-02-02
High Yes

Dell Data Protection Central update for third-party components 2024-01-30
High Yes

References

Description of CWE-863 on Mitre website