← All weakness types
Improper Access Control
CWE-2845,323 vulnerabilities are classified as Improper Access Control (CWE-284). The most exploitable are shown first (by EPSS), each with its CVSS score, exploit-prediction, CISA KEV status, and available fix.
| CVE | Severity | CVSS | EPSS | Exploited | Fix |
|---|---|---|---|---|---|
| CVE-2023-27350 | Critical | 9.8 | 100% | KEV + Ransom | Fix |
| CVE-2019-1653 | High | 7.5 | 100% | KEV | - |
| CVE-2023-23752 | Medium | 5.3 | 100% | KEV | Fix |
| CVE-2023-29298 | High | 7.5 | 100% | KEV | - |
| CVE-2023-38205 | High | 7.5 | 100% | KEV | - |
| CVE-2024-27348 | Critical | 9.8 | 99% | KEV | Fix |
| CVE-2012-4681 | Critical | 9.8 | 99% | KEV + Ransom | - |
| CVE-2024-20767 | High | 7.4 | 99% | KEV | - |
| CVE-2013-0422 | Critical | 9.8 | 98% | KEV + Ransom | - |
| CVE-2023-26360 | High | 8.6 | 97% | KEV | - |
| CVE-2022-0824 | High | 8.8 | 97% | - | Fix |
| CVE-2015-3306 | High | 10.0 | 97% | - | Fix |
| CVE-2011-3544 | Critical | 9.8 | 97% | KEV | Fix |
| CVE-2023-24489 | Critical | 9.8 | 95% | KEV | Fix |
| CVE-2012-1723 | Critical | 9.8 | 94% | KEV + Ransom | Fix |
| CVE-2016-3427 | Critical | 9.8 | 92% | KEV | Fix |
| CVE-2012-5076 | Critical | 9.8 | 91% | KEV | - |
| CVE-2025-12480 | Critical | 9.1 | 90% | KEV | Fix |
| CVE-2019-2729 | Critical | 9.8 | 89% | - | - |
| CVE-2014-3120 | High | 8.1 | 89% | KEV | Fix |
| CVE-2026-35616 | Critical | 9.8 | 89% | KEV | - |
| CVE-2020-8193 | Medium | 6.5 | 88% | KEV | Fix |
| CVE-2013-2423 | Low | 3.7 | 85% | KEV | - |
| CVE-2022-23134 | Low | 3.7 | 85% | KEV | Fix |
| CVE-2019-1619 | Critical | 9.8 | 83% | - | - |
| CVE-2023-22232 | Medium | 5.3 | 82% | - | - |
| CVE-2022-31704 | Critical | 9.8 | 81% | - | Fix |
| CVE-2021-20034 | Critical | 9.1 | 81% | - | - |
| CVE-2021-21425 | Critical | 9.3 | 80% | - | Fix |
| CVE-2026-48907 | Critical | 9.8 | 80% | KEV | Fix |
| CVE-2019-1622 | Medium | 5.3 | 79% | - | - |
| CVE-2025-30208 | Medium | 5.3 | 77% | - | Fix |
| CVE-2016-1543 | High | 7.5 | 72% | - | - |
| CVE-2015-2509 | High | 9.3 | 71% | - | - |
| CVE-2024-25723 | High | 8.8 | 71% | - | Fix |
| CVE-2016-7212 | High | 7.8 | 70% | - | - |
| CVE-2025-4901 | Medium | 4.3 | 66% | - | - |
| CVE-2025-33073 | High | 8.8 | 65% | KEV | Fix |
| CVE-2016-7237 | Medium | 6.5 | 65% | - | - |
| CVE-2025-31125 | Medium | 5.3 | 62% | KEV | Fix |
| CVE-2024-20931 | High | 7.5 | 60% | - | - |
| CVE-2023-21742 | High | 8.8 | 56% | - | Fix |
| CVE-2017-5254 | High | 8.8 | 54% | - | - |
| CVE-2021-22941 | Critical | 9.8 | 54% | KEV + Ransom | Fix |
| CVE-2016-5388 | High | 8.1 | 51% | - | Fix |
| CVE-2026-2699 | Critical | 9.8 | 49% | - | Fix |
| CVE-2016-0170 | High | 8.8 | 49% | - | - |
| CVE-2024-39943 | Critical | 9.9 | 48% | - | Fix |
| CVE-2023-4169 | Medium | 6.3 | 47% | - | - |
| CVE-2015-3224 | Medium | 4.3 | 45% | - | - |
| CVE-2026-21962 | Critical | 10.0 | 43% | - | - |
| CVE-2024-21644 | High | 7.5 | 42% | - | - |
| CVE-2012-6435 | High | 7.5 | 42% | - | - |
| CVE-2022-23513 | Medium | 5.3 | 40% | - | - |
| CVE-2016-2960 | Low | 3.7 | 40% | - | - |
| CVE-2015-4624 | High | 7.5 | 37% | - | - |
| CVE-2025-31486 | Medium | 5.3 | 35% | - | - |
| CVE-2016-1000031 | Critical | 9.8 | 35% | - | - |
| CVE-2024-24824 | High | 8.8 | 34% | - | Fix |
| CVE-2015-1376 | Medium | 4.0 | 34% | - | - |
| CVE-2012-6442 | High | 7.5 | 33% | - | - |
| CVE-2016-3345 | High | 8.8 | 32% | - | - |
| CVE-2016-7054 | High | 7.5 | 32% | - | Fix |
| CVE-2024-10124 | Critical | 9.8 | 31% | - | - |
| CVE-2021-24146 | High | 7.5 | 31% | - | Fix |
| CVE-2016-5645 | High | 7.3 | 29% | - | - |
| CVE-2015-0008 | High | 8.3 | 29% | - | - |
| CVE-2012-6439 | High | 8.5 | 28% | - | - |
| CVE-2025-63387 | High | 7.5 | 28% | - | - |
| CVE-2023-22960 | High | 7.5 | 28% | - | Fix |
| CVE-2024-55963 | Medium | 6.5 | 28% | - | Fix |
| CVE-2024-13106 | Medium | 5.3 | 27% | - | - |
| CVE-2021-4119 | Critical | 9.8 | 27% | - | - |
| CVE-2016-6255 | High | 7.5 | 27% | - | Fix |
| CVE-2024-27497 | High | 8.8 | 26% | - | - |
| CVE-2020-8196 | Medium | 4.3 | 26% | KEV | Fix |
| CVE-2015-3073 | High | 10.0 | 25% | - | - |
| CVE-2008-2947 | Medium | 6.8 | 25% | - | - |
| CVE-2016-0179 | High | 7.8 | 24% | - | - |
| CVE-2024-25830 | Critical | 9.8 | 24% | - | - |
| CVE-2024-34112 | High | 7.5 | 24% | - | - |
| CVE-2014-5208 | High | 7.5 | 23% | - | - |
| CVE-2023-3306 | High | 7.3 | 23% | - | - |
| CVE-2016-9565 | Critical | 9.8 | 23% | - | - |
| CVE-2015-5116 | Medium | 5.0 | 22% | - | - |
| CVE-2016-3987 | Critical | 9.8 | 22% | - | - |
| CVE-2016-7248 | High | 7.8 | 22% | - | - |
| CVE-2015-3302 | High | 7.5 | 22% | - | - |
| CVE-2016-0153 | High | 7.8 | 21% | - | - |
| CVE-2016-0142 | High | 7.8 | 20% | - | - |
| CVE-2019-8456 | Medium | 5.9 | 20% | - | - |
| CVE-2015-7545 | Critical | 9.8 | 20% | - | Fix |
| CVE-2016-0182 | High | 7.8 | 20% | - | - |
| CVE-2016-6598 | Critical | 9.8 | 20% | - | - |
| CVE-2024-24496 | Critical | 9.8 | 20% | - | - |
| CVE-2022-41654 | Medium | 4.3 | 19% | - | Fix |
| CVE-2016-4979 | High | 7.5 | 19% | - | Fix |
| CVE-2016-3244 | Medium | 4.3 | 19% | - | - |
| CVE-2016-3319 | High | 7.0 | 19% | - | - |
| CVE-2015-1761 | Medium | 6.5 | 19% | - | - |
Showing the top 100 of 5,323. Browse all 5,323 in the lookup tool.