← All weakness types

Improper Access Control

CWE-284

5,323 vulnerabilities are classified as Improper Access Control (CWE-284). The most exploitable are shown first (by EPSS), each with its CVSS score, exploit-prediction, CISA KEV status, and available fix.

CVESeverityCVSSEPSSExploitedFix
CVE-2023-27350Critical9.8100%KEV + RansomFix
CVE-2019-1653High7.5100%KEV-
CVE-2023-23752Medium5.3100%KEVFix
CVE-2023-29298High7.5100%KEV-
CVE-2023-38205High7.5100%KEV-
CVE-2024-27348Critical9.899%KEVFix
CVE-2012-4681Critical9.899%KEV + Ransom-
CVE-2024-20767High7.499%KEV-
CVE-2013-0422Critical9.898%KEV + Ransom-
CVE-2023-26360High8.697%KEV-
CVE-2022-0824High8.897%-Fix
CVE-2015-3306High10.097%-Fix
CVE-2011-3544Critical9.897%KEVFix
CVE-2023-24489Critical9.895%KEVFix
CVE-2012-1723Critical9.894%KEV + RansomFix
CVE-2016-3427Critical9.892%KEVFix
CVE-2012-5076Critical9.891%KEV-
CVE-2025-12480Critical9.190%KEVFix
CVE-2019-2729Critical9.889%--
CVE-2014-3120High8.189%KEVFix
CVE-2026-35616Critical9.889%KEV-
CVE-2020-8193Medium6.588%KEVFix
CVE-2013-2423Low3.785%KEV-
CVE-2022-23134Low3.785%KEVFix
CVE-2019-1619Critical9.883%--
CVE-2023-22232Medium5.382%--
CVE-2022-31704Critical9.881%-Fix
CVE-2021-20034Critical9.181%--
CVE-2021-21425Critical9.380%-Fix
CVE-2026-48907Critical9.880%KEVFix
CVE-2019-1622Medium5.379%--
CVE-2025-30208Medium5.377%-Fix
CVE-2016-1543High7.572%--
CVE-2015-2509High9.371%--
CVE-2024-25723High8.871%-Fix
CVE-2016-7212High7.870%--
CVE-2025-4901Medium4.366%--
CVE-2025-33073High8.865%KEVFix
CVE-2016-7237Medium6.565%--
CVE-2025-31125Medium5.362%KEVFix
CVE-2024-20931High7.560%--
CVE-2023-21742High8.856%-Fix
CVE-2017-5254High8.854%--
CVE-2021-22941Critical9.854%KEV + RansomFix
CVE-2016-5388High8.151%-Fix
CVE-2026-2699Critical9.849%-Fix
CVE-2016-0170High8.849%--
CVE-2024-39943Critical9.948%-Fix
CVE-2023-4169Medium6.347%--
CVE-2015-3224Medium4.345%--
CVE-2026-21962Critical10.043%--
CVE-2024-21644High7.542%--
CVE-2012-6435High7.542%--
CVE-2022-23513Medium5.340%--
CVE-2016-2960Low3.740%--
CVE-2015-4624High7.537%--
CVE-2025-31486Medium5.335%--
CVE-2016-1000031Critical9.835%--
CVE-2024-24824High8.834%-Fix
CVE-2015-1376Medium4.034%--
CVE-2012-6442High7.533%--
CVE-2016-3345High8.832%--
CVE-2016-7054High7.532%-Fix
CVE-2024-10124Critical9.831%--
CVE-2021-24146High7.531%-Fix
CVE-2016-5645High7.329%--
CVE-2015-0008High8.329%--
CVE-2012-6439High8.528%--
CVE-2025-63387High7.528%--
CVE-2023-22960High7.528%-Fix
CVE-2024-55963Medium6.528%-Fix
CVE-2024-13106Medium5.327%--
CVE-2021-4119Critical9.827%--
CVE-2016-6255High7.527%-Fix
CVE-2024-27497High8.826%--
CVE-2020-8196Medium4.326%KEVFix
CVE-2015-3073High10.025%--
CVE-2008-2947Medium6.825%--
CVE-2016-0179High7.824%--
CVE-2024-25830Critical9.824%--
CVE-2024-34112High7.524%--
CVE-2014-5208High7.523%--
CVE-2023-3306High7.323%--
CVE-2016-9565Critical9.823%--
CVE-2015-5116Medium5.022%--
CVE-2016-3987Critical9.822%--
CVE-2016-7248High7.822%--
CVE-2015-3302High7.522%--
CVE-2016-0153High7.821%--
CVE-2016-0142High7.820%--
CVE-2019-8456Medium5.920%--
CVE-2015-7545Critical9.820%-Fix
CVE-2016-0182High7.820%--
CVE-2016-6598Critical9.820%--
CVE-2024-24496Critical9.820%--
CVE-2022-41654Medium4.319%-Fix
CVE-2016-4979High7.519%-Fix
CVE-2016-3244Medium4.319%--
CVE-2016-3319High7.019%--
CVE-2015-1761Medium6.519%--

Showing the top 100 of 5,323. Browse all 5,323 in the lookup tool.