CWE-862— Missing Authorization
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.— MITRE CWE catalog
8,505 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-862page 34 of 171
- CVE-2022-47326MEDIUMCVSS 5.5EG 5.52023-02-12
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
- CVE-2022-47327MEDIUMCVSS 5.5EG 5.52023-02-12
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
- CVE-2022-47328MEDIUMCVSS 5.5EG 5.52023-02-12
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
- CVE-2022-47329MEDIUMCVSS 5.5EG 5.52023-02-12
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
- CVE-2022-47330MEDIUMCVSS 5.5EG 5.52023-02-12
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
- CVE-2022-47332MEDIUMCVSS 5.5EG 5.52023-02-12
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
- CVE-2022-47333MEDIUMCVSS 5.5EG 5.52023-02-12
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
- CVE-2022-47339MEDIUMCVSS 6.7EG 6.72023-02-12
In cmd services, there is a OS command injection issue due to missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
- CVE-2022-47341MEDIUMCVSS 6.7EG 6.72023-02-12
In engineermode services, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
- CVE-2022-47357MEDIUMCVSS 5.5EG 5.52023-02-12
In log service, there is a missing permission check. This could lead to local denial of service in log service.
- CVE-2022-47358MEDIUMCVSS 5.5EG 5.52023-02-12
In log service, there is a missing permission check. This could lead to local denial of service in log service.
- CVE-2022-47359MEDIUMCVSS 5.5EG 5.52023-02-12
In log service, there is a missing permission check. This could lead to local denial of service in log service.
- CVE-2022-47360MEDIUMCVSS 5.5EG 5.52023-02-12
In log service, there is a missing permission check. This could lead to local denial of service in log service.
- CVE-2022-47361HIGHCVSS 7.8EG 7.82023-02-12
In firewall service, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
- CVE-2022-47367MEDIUMCVSS 5.5EG 5.52023-02-12
In bluetooth driver, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47425MEDIUMCVSS 4.3EG 4.32025-12-09
Missing Authorization vulnerability in Repute Infosystems ARMember allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember: from n/a through 3.4.10.
- CVE-2022-47429MEDIUMCVSS 5.3EG 5.32024-12-13
Missing Authorization vulnerability in 8Degree Themes Coming Soon Landing Page and Maintenance Mode WordPress Plugin allows Retrieve Embedded Sensitive Data.This issue affects Coming Soon Landing Page and Maintenance Mode WordPress Plugin:…
- CVE-2022-47450MEDIUMCVSS 5.5EG 5.52023-02-12
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
- CVE-2022-47461MEDIUMCVSS 6.7EG 6.72023-03-10
In telephone service, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
- CVE-2022-47462MEDIUMCVSS 6.7EG 6.72023-03-10
In telephone service, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
- CVE-2022-47471MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47472MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47473MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47474MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47475MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47476MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47477MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47478MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47479MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
- CVE-2022-47480MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local denial of service in telephone service with no additional execution privileges needed.
- CVE-2022-47481MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local denial of service in telephone service with no additional execution privileges needed.
- CVE-2022-47482MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local denial of service in telephone service with no additional execution privileges needed.
- CVE-2022-47483MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local denial of service in telephone service with no additional execution privileges needed.
- CVE-2022-47484MEDIUMCVSS 5.5EG 5.52023-03-10
In telephony service, there is a missing permission check. This could lead to local denial of service in telephone service with no additional execution privileges needed.
- CVE-2022-47490MEDIUMCVSS 5.5EG 5.52023-05-09
In soter service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.
- CVE-2022-47492MEDIUMCVSS 5.5EG 5.52023-05-09
In soter service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.
- CVE-2022-47493MEDIUMCVSS 5.5EG 5.52023-05-09
In soter service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.
- CVE-2022-47594MEDIUMCVSS 6.5EG 6.52024-12-13
Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Essential Blocks for Gutenberg: from n/a through 3.8.5.
- CVE-2022-47601MEDIUMCVSS 5.3EG 5.32025-01-02
Missing Authorization vulnerability in JoomUnited WP Table Manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Table Manager: from n/a through 3.5.2.
- CVE-2022-47604MEDIUMCVSS 4.3EG 4.32024-04-11
Missing Authorization vulnerability in junkcoder, ristoniinemets AJAX Thumbnail Rebuild.This issue affects AJAX Thumbnail Rebuild: from n/a through 1.13.
- CVE-2022-48166HIGHCVSS 7.5EG 7.52023-02-06
An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials.
- CVE-2022-48242MEDIUMCVSS 5.5EG 5.52023-05-09
In telephony service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges.
- CVE-2022-48243HIGHCVSS 7.8EG 7.82023-05-09
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
- CVE-2022-48244HIGHCVSS 7.8EG 7.82023-05-09
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
- CVE-2022-48245HIGHCVSS 7.8EG 7.82023-05-09
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
- CVE-2022-48246HIGHCVSS 7.8EG 7.82023-05-09
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
- CVE-2022-48247HIGHCVSS 7.8EG 7.82023-05-09
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
- CVE-2022-48248HIGHCVSS 7.8EG 7.82023-05-09
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
- CVE-2022-48249HIGHCVSS 7.8EG 7.82023-05-09
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
- CVE-2022-48250HIGHCVSS 7.8EG 7.82023-05-09
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
Map vulnerabilities like CWE-862 to your infrastructure
EchelonGraph correlates every CVE — across CWE-862 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →