Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CVEs (2,778)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-35309 1Samsung 1Syncthru Web Service Nov 21, 2024 Aug 22, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 An issue discovered in Samsung SyncThru Web Service SPL 5.93 06-09-2014 allows attackers to gain escalated privileges via MITM attacks.
CVE-2023-25647 1Zte 4Axon 30 Firmware Axon 40 Pro FirmwareAxon 40 Ultra Firmware+1 more Nov 21, 2024 Aug 17, 2023 N/A· v4 3.3 LOW· v3 N/A· v2 There is a permission and access control vulnerability in some ZTE mobile phones. Due to improper access control, applications in mobile phone could monitor the touch event.
CVE-2023-32490 1Dell 1Powerscale Onefs Feb 20, 2026 Aug 16, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Dell PowerScale OneFS 8.2x -9.5x contains an improper privilege management vulnerability. A high privilege local attacker could potentially exploit this vulnerability, leading to system takeover.
CVE-2023-32487 1Dell 1Powerscale Onefs Feb 20, 2026 Aug 16, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell PowerScale OneFS, 8.2.x - 9.5.0.x, contains an elevation of privilege vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to denial of service, code execution and in...Show more Dell PowerScale OneFS, 8.2.x - 9.5.0.x, contains an elevation of privilege vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to denial of service, code execution and information disclosure. Show less
CVE-2023-21272 1Google 1Android Nov 21, 2024 Aug 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In readFrom of Uri.java, there is a possible bad URI permission grant due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is...Show more In readFrom of Uri.java, there is a possible bad URI permission grant due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Show less
CVE-2023-21269 1Google 1Android Nov 21, 2024 Aug 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In startActivityInner of ActivityStarter.java, there is a possible way to launch an activity into PiP mode from the background due to BAL bypass. This could lead to local escalation of privilege with no additional execut...Show more In startActivityInner of ActivityStarter.java, there is a possible way to launch an activity into PiP mode from the background due to BAL bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Show less
CVE-2023-38721 1Ibm 1I Nov 21, 2024 Aug 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 The IBM i 7.2, 7.3, 7.4, and 7.5 product Facsimile Support for i contains a local privilege escalation vulnerability. A malicious actor could gain access to a command line with elevated privileges allowing root access...Show more The IBM i 7.2, 7.3, 7.4, and 7.5 product Facsimile Support for i contains a local privilege escalation vulnerability. A malicious actor could gain access to a command line with elevated privileges allowing root access to the host operating system. IBM X-Force ID: 262173.Show less
CVE-2023-0872 1Opennms 2Horizon Meridian Nov 21, 2024 Aug 14, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 The Horizon REST API includes a users endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to Meridian 2023.1.6, 20...Show more The Horizon REST API includes a users endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to Meridian 2023.1.6, 2022.1.19, 2021.1.30, 2020.1.38 or Horizon 32.0.2 or newer. Meridian and Horizon installation instructions state that they are intended for installation within an organization's private networks and should not be directly accessible from the Internet. OpenNMS thanks Erik Wynter for reporting this issue.Show less
CVE-2023-3160 1Eset 8Endpoint Antivirus Endpoint SecurityInternet Security+5 more Nov 21, 2024 Aug 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move files without having proper permissions.
CVE-2023-4293 1Wpdownloadmanager 1Premium Packages Sell Digital Products Securely Apr 8, 2026 Aug 12, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The Premium Packages - Sell Digital Products Securely plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 5.7.4 due to insufficient restriction on the 'wpdmpp_update_profile' func...Show more The Premium Packages - Sell Digital Products Securely plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 5.7.4 due to insufficient restriction on the 'wpdmpp_update_profile' function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modify their user role by supplying the 'profile[role]' parameter during a profile update.Show less
CVE-2021-28411 1Ruoyi 1Ruoyi Nov 21, 2024 Aug 11, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager class in lerry903 RuoYi version 3.4.0, allows remote attackers to escalate privileges.
CVE-2023-30680 1Samsung 1Android Nov 21, 2024 Aug 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows code execution with privilege.
CVE-2023-37859 1Phoenixcontact 6Wp 6070 Wvps Firmware Wp 6101 Wxps FirmwareWp 6121 Wxps Firmware+3 more Nov 21, 2024 Aug 9, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 the SNMP daemon is running with root privileges allowing a remote attacker with knowledge of the SNMPv2 r/w community string to execute system com...Show more In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 the SNMP daemon is running with root privileges allowing a remote attacker with knowledge of the SNMPv2 r/w community string to execute system commands as root.Show less
CVE-2023-4239 1Webcodingplace 1Real Estate Manager Apr 8, 2026 Aug 9, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The Real Estate Manager plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 7.2 due to insufficient restriction on the 'rem_save_profile_front' function. This makes it possible fo...Show more The Real Estate Manager plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 7.2 due to insufficient restriction on the 'rem_save_profile_front' function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modify their user role by supplying the 'wp_capabilities' parameter during a profile update.Show less
CVE-2023-39211 1Zoom 2Rooms Zoom Nov 21, 2024 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access.
CVE-2023-4009 1Mongodb 1Ops Manager Server Feb 13, 2025 Aug 8, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner result...Show more In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation.Show less
CVE-2023-39520 1Cryptomator 1Cryptomator Apr 10, 2025 Aug 7, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the `repair` functi...Show more Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the `repair` function. The problem occurs as the repair function of the MSI is spawning an SYSTEM Powershell without the `-NoProfile` parameter. Therefore the profile of the user starting the repair will be loaded. Version 1.9.3 contains a fix for this issue. Adding a `-NoProfile` to the powershell is a possible workaround.Show less
CVE-2023-4140 1Smackcoders 1Wp Ultimate Csv Importer Apr 8, 2026 Aug 4, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The WP Ultimate CSV Importer plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 7.9.8 due to insufficient restriction on the 'get_header_values' function. This makes it possible...Show more The WP Ultimate CSV Importer plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 7.9.8 due to insufficient restriction on the 'get_header_values' function. This makes it possible for authenticated attackers, with minimal permissions such as an author, if the administrator previously grants access in the plugin settings, to modify their user role by supplying the 'wp_capabilities->cus1' parameter.Show less
CVE-2023-20216 1Cisco 12Broadworks Application Delivery Platform Broadworks Application ServerBroadworks Database Server+9 more Nov 21, 2024 Aug 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability in the privilege management functionality of all Cisco BroadWorks server types could allow an authenticated, local attacker to elevate privileges to root on an affected system. This vulnerability is d...Show more A vulnerability in the privilege management functionality of all Cisco BroadWorks server types could allow an authenticated, local attacker to elevate privileges to root on an affected system. This vulnerability is due to incorrect implementation of user role permissions. An attacker could exploit this vulnerability by authenticating to the application as a user with the BWORKS or BWSUPERADMIN role and issuing crafted commands on an affected system. A successful exploit could allow the attacker to execute commands beyond the sphere of their intended access level, including initiating installs or running operating system commands with elevated permissions. There are workarounds that address this vulnerability.Show less
CVE-2023-31432 1Broadcom 1Brocade Fabric Operating System Feb 13, 2025 Aug 2, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Through manipulation of passwords or other variables, using commands such as portcfgupload, configupload, license, myid, a non-privileged user could obtain root privileges in Brocade Fabric OS versions before Brocade Fab...Show more Through manipulation of passwords or other variables, using commands such as portcfgupload, configupload, license, myid, a non-privileged user could obtain root privileges in Brocade Fabric OS versions before Brocade Fabric OS v9.1.1c and v9.2.0.Show less

Previous 1...616263...139 Next