CVE-2024-1223 Improper authorization controls in PaperCut NG/MF

This vulnerability potentially allows unauthorized enumeration of information from the embedded device APIs. An attacker must already have existing knowledge of some combination of valid usernames, device names and an internal system key. For such an attack to be successful the system must be in ...

CVE-2021-42126

An improper authorization control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform privilege escalation...

Authorization

An improper authorization control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform privilege escalation...

CVE-2021-42126

An improper authorization control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform privilege escalation...

CVE-2020-4646

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5, 6.0.0.0 through 6.0.3.3, and 6.1.0.0 through 6.1.0.2 could allow an authenticated user to view pages they shoiuld not have access to due to improper authorization control...

CVE-2020-4646

CVE-2020-4646 affects IBM Sterling B2B Integrator Standard Edition: 5.2.0.0–5.2.6.5, 6.0.0.0–6.0.3.3, and 6.1.0.0–6.1.0.2. An authenticated user could view pages they should not access due to improper authorization controls. IBM confirms remediation: upgrade to 5.2.6.5_4 (5.2.x), 6.0.3.4 (6.0.x),...