CVEbaza.plSłownik CWECWE-424
Common Weakness Enumeration

CWE-424

Improper Protection of Alternate Path

Kategoria: ClassCVE: 32
Opis

Produkt nie zapewnia wystarczającej ochrony dla wszystkich możliwych ścieżek dostępu, którymi użytkownik może uzyskać dostęp do ograniczonej funkcjonalności lub zasobów. Luka ta pozwala na obejście mechanizmów bezpieczeństwa poprzez wykorzystanie alternatywnych sposobów dostępu.

Description (EN)

The product does not sufficiently protect all possible paths that a user can take to access restricted functionality or resources.

Podatności CVE z CWE-424 (32)
10.0
CVSS
CRITICAL
CVE-2025-48827

Podatność w vBulletin umożliwia nieuwierzytelnionemu zdalnemu atakującemu wywołanie chronionych metod API, co prowadzi do pełnego przejęcia systemu. Błąd był aktywnie wykorzystywany w środowiskach produkcyjnych w maju 2025 roku.

pub. 2025-05-27
9.3
CVSS
CRITICAL
CVE-2023-52952

W urządzeniach Siemens HiMed Cockpit (modele 12 pro, 14 pro+, 18 pro, 18 pro+) zidentyfikowano krytyczną podatność umożliwiającą ucieczkę z trybu Kiosk Mode. Nieuwierzytelniony atakujący z lokalnym dostępem może wydostać się z ograniczonego środowiska desktopowego i uzyskać dostęp do bazowego systemu operacyjnego.

pub. 2024-10-08
9.0
CVSS
CRITICAL
CVE-2025-48828

Podatność w silniku szablonów vBulletin umożliwia atakującym zdalne wykonanie dowolnego kodu PHP poprzez nadużycie mechanizmu Template Conditionals. Luka była aktywnie wykorzystywana w środowiskach produkcyjnych w maju 2025 roku.

pub. 2025-05-27
9.0
CVSS
CRITICAL
CVE-2024-58136

Yii 2 w wersjach przed 2.0.52 nieprawidłowo obsługuje dołączanie behavior zdefiniowanego przez klucz tablicy __class, co stanowi regresję wcześniej naprawionej podatności CVE-2024-4990. Luka jest aktywnie wykorzystywana w środowiskach produkcyjnych i pozwala zdalnym atakującym na wykonanie dowolnego kodu.

pub. 2025-04-10🚩 CISA KEV⚡ EXPLOIT
8.7
CVSS
HIGH
CVE-2024-8781

Execution with Unnecessary Privileges, : Improper Protection of Alternate Path vulnerability in TR7 Application Security Platform (ASP) allows Privilege Escalation, -Privilege Abuse. This issue affects Application Security Platform (ASP): v1.4.25.188.

pub. 2024-11-18
8.4
CVSS
HIGH
CVE-2024-3459

KioWare for Windows (versions all through 8.34) allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. By using built-in functions of that viewer it is possible to launch a web browser, search through local files and, subsequently, launch any program with user privileges.

pub. 2024-05-14
8.2
CVSS
HIGH
CVE-2025-68939

Gitea before 1.23.0 allows attackers to add attachments with forbidden file extensions by editing an attachment name via an attachment API.

pub. 2025-12-26
7.4
CVSS
HIGH
CVE-2024-3460

In KioWare for Windows (versions all through 8.34) it is possible to exit this software and use other already opened applications utilizing a short time window before the forced automatic logout occurs. Then, by using some built-in function of these applications, one may launch any other programs.  In order to exploit this vulnerability external applications must be left running when the KioWare software is launched. Additionally, an attacker must know the PIN set for this Kioware instance and also slow down the application with some specific task which extends the usable time window.

pub. 2024-05-14
7.3
CVSS
HIGH
CVE-2026-0237

An improper protection of alternate path vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to an internal automation bridge. This allows a locally authenticated non-admin user to leverage an exposed communication channel to send unauthorized commands to the browser, bypassing security controls.

pub. 2026-05-13
7.1
CVSS
HIGH
CVE-2025-6250

Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions.

pub. 2025-07-28
7.1
CVSS
HIGH
CVE-2023-5165

Docker Desktop before 4.23.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions via the debug shell which remains accessible for a short time window after launching Docker Desktop. The affected functionality is available for Docker Business customers only and assumes an environment where users are not granted local root or Administrator privileges. This issue has been fixed in Docker Desktop 4.23.0. Affected Docker Desktop versions: from 4.13.0 before 4.23.0.

pub. 2023-09-25
7.1
CVSS
HIGH
CVE-2023-0629

Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enhanced Container Isolation (ECI) restrictions by setting the Docker host to docker.raw.sock, or npipe:////.pipe/docker_engine_linux on Windows, via the -H (--host) CLI flag or the DOCKER_HOST environment variable and launch containers without the additional hardening features provided by ECI. This would not affect already running containers, nor containers launched through the usual approach (without Docker's raw socket). The affected functionality is available for Docker Business customers only and assumes an environment where users are not granted local root or Administrator privileges. This issue has been fixed in Docker Desktop 4.17.0. Affected Docker Desktop versions: from 4.13.0 before 4.17.0.

pub. 2023-03-13
7.1
CVSS
HIGH
CVE-2019-18996

Path settings in HMIStudio component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier accept DLLs outside of the program directory, potentially allowing an attacker with access to the local file system the execution of code in the application’s context.

pub. 2019-12-18
6.8
CVSS
MEDIUM
CVE-2026-4270

Improper Protection of Alternate Path exists in the no-access and workdir feature of the AWS API MCP Server versions >= 0.2.14 and < 1.3.9 on all platforms may allow the bypass of intended file access restriction and expose arbitrary local file contents in the MCP client application context. To remediate this issue, users should upgrade to version 1.3.9.

pub. 2026-03-16
6.8
CVSS
MEDIUM
CVE-2022-1742

The tested version of Dominion Voting Systems ImageCast X allows for rebooting into Android Safe Mode, which allows an attacker to directly access the operating system. An attacker could leverage this vulnerability to escalate privileges on a device and/or install malicious code.

pub. 2022-06-24
6.7
CVSS
MEDIUM
CVE-2025-49163

Arris VIP1113 devices through 2025-05-30 with KreaTV SDK allow booting an arbitrary image via a crafted /usr/bin/gunzip file.

pub. 2025-06-03
6.7
CVSS
MEDIUM
CVE-2023-20272

A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote attacker to upload malicious files to the web root of the application. This vulnerability is due to insufficient file input validation. An attacker could exploit this vulnerability by uploading a malicious file to the web interface. A successful exploit could allow the attacker to replace files and gain access to sensitive server-side information.

pub. 2023-11-21
6.7
CVSS
MEDIUM
CVE-2023-46176

IBM MQ Appliance 9.3 CD could allow a local attacker to gain elevated privileges on the system, caused by improper validation of security keys. IBM X-Force ID: 269535.

pub. 2023-11-03
6.5
CVSS
MEDIUM
CVE-2024-8311

An issue was discovered with pipeline execution policies in GitLab EE affecting all versions from 17.2 prior to 17.2.5, 17.3 prior to 17.3.2 which allows authenticated users to bypass variable overwrite protection via inclusion of a CI/CD template.

pub. 2024-09-12
6.5
CVSS
MEDIUM
CVE-2021-3793

An improper access control vulnerability was reported in some Motorola-branded Binatone Hubble Cameras which could allow an unauthenticated attacker on the same network as the device to access administrative pages that could result in information disclosure or device firmware update with verified firmware.

pub. 2021-11-12
Pokazano 20 z 32 podatności
Informacje
ID: CWE-424
Typ: Class
Podatności: 32
MITRE CWE ↗
← Słownik CWE