CWE-269
2,777 CVEs • Abstraction: Class • Likelihood of Exploit: Medium
Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
CVEs (2,777)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Microsoft 2Sharepoint Enterprise Server Sharepoint ServerNov 21, 2024 Jan 12, 2021 N/A· v4 8.0 HIGH· v3 6.0 MEDIUM· v2 Microsoft SharePoint Elevation of Privilege Vulnerability |
1Microsoft 3Sharepoint Enterprise Server Sharepoint FoundationSharepoint ServerNov 21, 2024 Jan 12, 2021 N/A· v4 8.0 HIGH· v3 6.0 MEDIUM· v2 Microsoft SharePoint Elevation of Privilege Vulnerability |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows Win32k Elevation of Privilege Vulnerability |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Jan 12, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Windows LUAFV Elevation of Privilege Vulnerability |
1Microsoft 7Windows 10 Windows 7Windows 8.1+4 moreNov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows Hyper-V Elevation of Privilege Vulnerability |
1Microsoft 2Windows 10 Windows Server 2016Nov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows Event Logging Service Elevation of Privilege Vulnerability |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows Remote Procedure Call Runtime Elevation of Privilege Vulnerability |
1Microsoft 3Windows 10 Windows Server 2016Windows Server 2019Nov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows InstallService Elevation of Privilege Vulnerability |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows Print Spooler Elevation of Privilege Vulnerability |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Jan 12, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Windows Update Stack Elevation of Privilege Vulnerability |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows CSC Service Elevation of Privilege Vulnerability |
Windows WalletService Elevation of Privilege Vulnerability |
1Microsoft 3Windows 10 Windows Server 2016Windows Server 2019Nov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Windows Multipoint Management Elevation of Privilege Vulnerability |
1Microsoft 8Windows 10 Windows 7Windows 8.1+5 moreNov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Windows CSC Service Elevation of Privilege Vulnerability |
Windows WalletService Elevation of Privilege Vulnerability |
Windows WalletService Elevation of Privilege Vulnerability |
1Microsoft 3Windows 10 Windows Server 2016Windows Server 2019Nov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Windows AppX Deployment Extensions Elevation of Privilege Vulnerability |
1Microsoft 3Windows 10 Windows Server 2016Windows Server 2019Nov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Windows Kernel Elevation of Privilege Vulnerability |
Windows WalletService Elevation of Privilege Vulnerability |
1Microsoft 6Visual Studio Visual Studio 2017Visual Studio 2019+3 moreNov 21, 2024 Jan 12, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability |