CVE-2025-36440

IBM Concert 1.0.0 through 2.2.0 could allow a local user to obtain sensitive information due to missing function level access control...

CVE-2025-36440 Multiple Vulnerabilities in IBM Concert Software

IBM Concert 1.0.0 through 2.2.0 could allow a local user to obtain sensitive information due to missing function level access control...

CVE-2024-12307

A function-level access control vulnerability in Unifiedtransform version 2.0 and potentially earlier versions allows teachers to modify student personal data without proper authorization. The vulnerability exists due to missing access control checks in the student editing functionality. At the...

CVE-2024-12307 Function-Level Access Control Vulnerability Allows Unauthorized Modification of Student Data in Unifiedtransform

A function-level access control vulnerability in Unifiedtransform version 2.0 and potentially earlier versions allows teachers to modify student personal data without proper authorization. The vulnerability exists due to missing access control checks in the student editing functionality. At the...

Mozilla: Missing Function Level Access Control in Mozilla formula containsRegular Expression Denial of Service (CVE-2023-25166)

Vulnerability description not provided...

Netgear JGS516PE Devices Missing Function Level Access Control Vulnerability

Netgear JGS516PE devices contain a missing function level access control vulnerability...

CVE-2021-38516

Certain NETGEAR devices are affected by lack of access control at the function level. This affects D6220 before 1.0.0.48, D6400 before 1.0.0.82, D7000v2 before 1.0.0.52, D7800 before 1.0.1.44, D8500 before 1.0.3.43, DC112A before 1.0.0.40, DGN2200v4 before 1.0.0.108, RBK50 before 2.3.0.32, RBR50...

VulnCheck KEV: CVE-2020-26919

Netgear JGS516PE devices contain a missing function level access control vulnerability...

PT-2020-5878

Name of the Vulnerable Software and Affected Versions: NETGEAR JGS516PE versions prior to 2.6.0.43 Description: The issue is related to the lack of access control at the function level in NETGEAR JGS516PE devices. This can be exploited by a remote attacker to cause a denial of service. There is n...

CVE-2020-4348

IBM Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.4 could allow an authenticated GUI user to perform unauthorized actions due to missing function level access control. IBM X-Force ID: 178414...

Code injection

IBM Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.4 could allow an authenticated GUI user to perform unauthorized actions due to missing function level access control. IBM X-Force ID: 178414...

CVE-2019-20679

NETGEAR MR1100 devices before 12.06.08.00 are affected by lack of access control at the function level...

CVE-2019-20676

Certain NETGEAR devices are affected by lack of access control at the function level. This affects FS728TLP before 1.0.1.26, GS105Ev2 before 1.6.0.4, GS105PE before 1.6.0.4, GS108Ev3 before 2.06.08, GS108PEv3 before 2.06.08, GS110EMX before 1.0.1.4, GS116Ev2 before 2.6.0.35, GS408EPP before...

Security Bulletin: IBM StoredIQ is affected by a missing function level access control vulnerability (CVE-2019-4163)

Summary IBM StoredIQ has addressed the following vulnerability: Missing function level access control. Vulnerability Details CVEID: CVE-2019-4163 DESCRIPTION: IBM StoreIQ could allow an authenticated user to obtain sensitive information that a privileged user should only be allowed to view. CVSS...

CVE-2019-4194

IBM Jazz for Service Management versions 1.1.3–1.1.3.2 are affected by a missing function level access control allowing a user to delete authorized resources. Root cause: insufficient access control at function level. Impact: potential deletion of authorized resources. Mitigation: apply the fix 1...

CVE-2019-4194

IBM Jazz for Service Management 1.1.3, 1.1.3.1, and 1.1.3.2 is missing function level access control that could allow a user to delete authorized resources. IBM X-Force ID: 159033...

Missing Function Level Access Control

Binary data missingfunclevelaccessctrl.nbin...

Sophos XG Firewall 16.05.4 MR-4 - Path Traversal

Sophos XG Firewall 16.05.4 MR-4 - Path Traversal Vulnerabilities Summary The following advisory describe two 2 vulnerabilities, a Path Traversal and a Missing Function Level Access Control, in Sophos XG Firewall 16.05.4 MR-4. Sophos XG Firewall provides “unprecedented visibility into your network...

ManageEngine OPutils 8.0 - Multiple Vulnerabilities

ManageEngine OPutils 8.0 - Multiple Vulnerabilities =================================================================================== Privilege escalation Vulnerability in ManageEngine oputils =================================================================================== Overview ========...

ManageEngine OPutils 8.0 - Multiple Vulnerabilities

=================================================================================== Privilege escalation Vulnerability in ManageEngine oputils =================================================================================== Overview ======== Title:- Privilege escalation Vulnerability in...