Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CVEs (2,777)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-31214 3Debian FedoraprojectFirejail Project 3Debian Linux FedoraFirejail Nov 21, 2024 Jun 9, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an...Show more A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user namespace, the NO_NEW_PRIVS prctl is not activated, and the entered mount namespace is under the attacker's control. In this way, the filesystem layout can be adjusted to gain root privileges through execution of available setuid-root binaries such as su or sudo.Show less
CVE-2022-32272 1Opswat 1Metadefender Nov 21, 2024 Jun 9, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 OPSWAT MetaDefender Core before 5.1.2, MetaDefender ICAP before 4.12.1, and MetaDefender Email Gateway Security before 5.6.1 have incorrect access control, resulting in privilege escalation.
CVE-2022-30743 1Samsung 1Account Nov 21, 2024 Jun 7, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission.
CVE-2022-30739 1Samsung 1Account Nov 21, 2024 Jun 7, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission.
CVE-2022-30736 1Samsung 1Account Nov 21, 2024 Jun 7, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the data of contact and gallery without permission.
CVE-2022-30735 1Samsung 1Account Nov 21, 2024 Jun 7, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get the access_token without permission.
CVE-2020-36542 1Demokratian 1Demokratian Nov 21, 2024 Jun 7, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A vulnerability classified as critical has been found in Demokratian. This affects an unknown part of the file install/install3.php. The manipulation leads to privilege escalation. It is possible to initiate the attack r...Show more A vulnerability classified as critical has been found in Demokratian. This affects an unknown part of the file install/install3.php. The manipulation leads to privilege escalation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue.Show less
CVE-2019-9971 23cx Debian 2Debian Linux Phone System Firmware Nov 21, 2024 Jun 7, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 PhoneSystem Terminal in 3CX Phone System (Debian based installation) 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z (aka post...Show more PhoneSystem Terminal in 3CX Phone System (Debian based installation) 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z (aka postrotate-command) option to tcpdump can be unsafe when used in conjunction with sudo.Show less
CVE-2022-21827 1Citrix 1Gateway Plug In Nov 21, 2024 May 26, 2022 N/A· v4 7.1 HIGH· v3 6.6 MEDIUM· v2 An improper privilege vulnerability has been discovered in Citrix Gateway Plug-in for Windows (Citrix Secure Access for Windows) <21.9.1.2 what could allow an attacker who has gained local access to a computer with Citri...Show more An improper privilege vulnerability has been discovered in Citrix Gateway Plug-in for Windows (Citrix Secure Access for Windows) <21.9.1.2 what could allow an attacker who has gained local access to a computer with Citrix Gateway Plug-in installed, to corrupt or delete files as SYSTEM.Show less
CVE-2022-29333 1Cyberlink 1Powerdirector Nov 21, 2024 May 24, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A vulnerability in CyberLink Power Director v14 allows attackers to escalate privileges via a crafted .exe file.
CVE-2014-125001 1Cardosystems 1Scala Rider Q3 Firmware Nov 21, 2024 May 24, 2022 N/A· v4 8.8 HIGH· v3 8.3 HIGH· v2 A vulnerability classified as critical has been found in Cardo Systems Scala Rider Q3. Affected is the file /cardo/api of the Cardo-Updater. Unauthenticated remote code execution with root permissions is possible. Firewa...Show more A vulnerability classified as critical has been found in Cardo Systems Scala Rider Q3. Affected is the file /cardo/api of the Cardo-Updater. Unauthenticated remote code execution with root permissions is possible. Firewalling or disabling the service is recommended.Show less
CVE-2022-31267 1Gitblit 1Gitblit Nov 21, 2024 May 21, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext 'attacker@example.com\n\trole = "#admin"' value.
CVE-2022-29179 1Cilium 1Cilium Nov 21, 2024 May 20, 2022 N/A· v4 8.2 HIGH· v3 7.2 HIGH· v2 Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Prior to versions 1.9.16, 1.10.11, and 1.11.15, if an attacker is able to perform a containe...Show more Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Prior to versions 1.9.16, 1.10.11, and 1.11.15, if an attacker is able to perform a container escape of a container running as root on a host where Cilium is installed, the attacker can escalate privileges to cluster admin by using Cilium's Kubernetes service account. The problem has been fixed and the patch is available in versions 1.9.16, 1.10.11, and 1.11.5. There are no known workarounds available.Show less
CVE-2022-1770 1Trudesk Project 1Trudesk Nov 21, 2024 May 20, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Improper Privilege Management in GitHub repository polonel/trudesk prior to 1.2.2.
CVE-2022-30695 1Acronis 1Snap Deploy Nov 21, 2024 May 16, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Snap Deploy (Windows) before build 3640
CVE-2021-23265 1Craftercms 1Crafter Cms Nov 21, 2024 May 16, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 A logged-in and authenticated user with a Reviewer Role may lock a content item.
CVE-2022-29587 1Konicaminolta 45Bizhub 226i Firmware Bizhub 227 FirmwareBizhub 246i Firmware+42 more Nov 21, 2024 May 16, 2022 N/A· v4 4.0 MEDIUM· v3 4.7 MEDIUM· v2 Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges.
CVE-2022-29218 1Rubygems 1Rubygems.org Nov 21, 2024 May 13, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 RubyGems is a package registry used to supply software for the Ruby language ecosystem. An ordering mistake in the code that accepts gem uploads allowed some gems (with platforms ending in numbers, like `arm64-darwin-21`...Show more RubyGems is a package registry used to supply software for the Ruby language ecosystem. An ordering mistake in the code that accepts gem uploads allowed some gems (with platforms ending in numbers, like `arm64-darwin-21`) to be temporarily replaced in the CDN cache by a malicious package. The bug has been patched, and is believed to have never been exploited, based on an extensive review of logs and existing gems by rubygems. The easiest way to ensure that an application has not been exploited by this vulnerability is to verify all downloaded .gems checksums match the checksum recorded in the RubyGems.org database. RubyGems.org has been patched and is no longer vulnerable to this issue.Show less
CVE-2022-23743 1Checkpoint 1Zonealarm Nov 21, 2024 May 11, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Check Point ZoneAlarm before version 15.8.200.19118 allows a local actor to escalate privileges during the upgrade process. In addition, weak permissions in the ProgramData\CheckPoint\ZoneAlarm\Data\Updates directory all...Show more Check Point ZoneAlarm before version 15.8.200.19118 allows a local actor to escalate privileges during the upgrade process. In addition, weak permissions in the ProgramData\CheckPoint\ZoneAlarm\Data\Updates directory allow a local attacker the ability to execute an arbitrary file write, leading to execution of code as local system, in ZoneAlarm versions before v15.8.211.192119Show less
CVE-2022-20114 1Google 1Android Nov 21, 2024 May 10, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. This could lead to local escalation of privilege with...Show more In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-211114016Show less

Previous 1...818283...139 Next