Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CVEs (2,777)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-8269 1Citrix 3Virtual Apps And Desktops XenappXendesktop Nov 21, 2024 Nov 16, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9
CVE-2020-13638 1Rconfig 1Rconfig Nov 21, 2024 Nov 13, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 lib/crud/userprocess.php in rConfig 3.9.x before 3.9.7 has an authentication bypass, leading to administrator account creation. This issue has been fixed in 3.9.7.
CVE-2020-2022 1Paloaltonetworks 1Pan Os Nov 21, 2024 Nov 12, 2020 N/A· v4 7.5 HIGH· v3 5.1 MEDIUM· v2 An information exposure vulnerability exists in Palo Alto Networks Panorama software that discloses the token for the Panorama web interface administrator's session to a managed device when the Panorama administrator per...Show more An information exposure vulnerability exists in Palo Alto Networks Panorama software that discloses the token for the Panorama web interface administrator's session to a managed device when the Panorama administrator performs a context switch into that device. This vulnerability allows an attacker to gain privileged access to the Panorama web interface. An attacker requires some knowledge of managed firewalls to exploit this issue. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.17; PAN-OS 9.0 versions earlier than PAN-OS 9.0.11; PAN-OS 9.1 versions earlier than PAN-OS 9.1.5.Show less
CVE-2020-16993 1Microsoft 1Azure Sphere Nov 21, 2024 Nov 11, 2020 N/A· v4 6.8 MEDIUM· v3 4.6 MEDIUM· v2 Azure Sphere Elevation of Privilege Vulnerability
CVE-2020-16126 1Freedesktop 1Accountsservice Nov 21, 2024 Nov 11, 2020 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to AccountService, thus stoppi...Show more An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to AccountService, thus stopping it from handling D-Bus messages in a timely fashion.Show less
CVE-2020-16122 2Canonical Packagekit Project 2Packagekit Ubuntu Linux Nov 21, 2024 Nov 7, 2020 N/A· v4 7.8 HIGH· v3 2.1 LOW· v2 PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured PolicyKit rules this may al...Show more PackageKit's apt backend mistakenly treated all local debs as trusted. The apt security model is based on repository trust and not on the contents of individual files. On sites with configured PolicyKit rules this may allow users to install malicious packages.Show less
CVE-2020-3600 1Cisco 1Sd Wan Nov 21, 2024 Nov 6, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient security controls on the CL...Show more A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient security controls on the CLI. An attacker could exploit this vulnerability by using an affected CLI utility that is running on an affected system. A successful exploit could allow the attacker to gain root privileges.Show less
CVE-2020-3595 1Cisco 1Sd Wan Nov 21, 2024 Nov 6, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root group on the underlying operating system. The vulnerability is due to incorrect permissions being set wh...Show more A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root group on the underlying operating system. The vulnerability is due to incorrect permissions being set when the affected command is executed. An attacker could exploit this vulnerability by executing the affected command on an affected system. A successful exploit could allow the attacker to gain root privileges.Show less
CVE-2020-3594 1Cisco 1Sd Wan Nov 21, 2024 Nov 6, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attack...Show more A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by providing crafted options to a specific command. A successful exploit could allow the attacker to gain root privileges.Show less
CVE-2020-3593 1Cisco 1Sd Wan Nov 21, 2024 Nov 6, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attack...Show more A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted request to a utility that is running on an affected system. A successful exploit could allow the attacker to gain root privileges.Show less
CVE-2020-27122 1Cisco 1Identity Services Engine Nov 21, 2024 Nov 6, 2020 N/A· v4 6.7 MEDIUM· v3 7.2 HIGH· v2 A vulnerability in the Microsoft Active Directory integration of Cisco Identity Services Engine (ISE) could allow an authenticated, local attacker to elevate privileges on an affected device. To exploit this vulnerabilit...Show more A vulnerability in the Microsoft Active Directory integration of Cisco Identity Services Engine (ISE) could allow an authenticated, local attacker to elevate privileges on an affected device. To exploit this vulnerability, an attacker would need to have a valid administrator account on an affected device. The vulnerability is due to incorrect privilege assignment. An attacker could exploit this vulnerability by logging in to the system with a crafted Active Directory account. A successful exploit could allow the attacker to obtain root privileges on an affected device.Show less
CVE-2020-28046 1Pax 1Prolinos Nov 21, 2024 Nov 2, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An issue was discovered in ProlinOS through 2.4.161.8859R. An attacker with local code execution privileges as a normal user (MAINAPP) can escalate to root privileges by exploiting the setuid installation of the xtables-...Show more An issue was discovered in ProlinOS through 2.4.161.8859R. An attacker with local code execution privileges as a normal user (MAINAPP) can escalate to root privileges by exploiting the setuid installation of the xtables-multi binary and leveraging the ip6tables --modprobe switch.Show less
CVE-2020-27655 1Synology 1Router Manager Nov 21, 2024 Oct 29, 2020 N/A· v4 10.0 CRITICAL· v3 7.5 HIGH· v2 Improper access control vulnerability in Synology Router Manager (SRM) before 1.2.4-8081 allows remote attackers to access restricted resources via inbound QuickConnect traffic.
CVE-2020-27654 1Synology 1Router Manager Nov 21, 2024 Oct 29, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Improper access control vulnerability in lbd in Synology Router Manager (SRM) before 1.2.4-8081 allows remote attackers to execute arbitrary commands via port (1) 7786/tcp or (2) 7787/tcp.
CVE-2020-16262 1Winstonprivacy 1Winston Firmware Nov 21, 2024 Oct 28, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Winston 1.5.4 devices have a local www-data user that is overly permissioned, resulting in root privilege escalation.
CVE-2020-7125 1Arubanetworks 1Airwave Glass Nov 21, 2024 Oct 26, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A remote escalation of privilege vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.
CVE-2020-24848 1Fruitywifi Project 1Fruitywifi Nov 21, 2024 Oct 23, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL : ALL) NOPASSWD: ALL]. This allows an attacker to perform a system-level (root) local privilege escalation, allowing an attacker to gain complete persistent a...Show more FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL : ALL) NOPASSWD: ALL]. This allows an attacker to perform a system-level (root) local privilege escalation, allowing an attacker to gain complete persistent access to the local system.Show less
CVE-2020-7020 1Elastic 1Elasticsearch Nov 21, 2024 Oct 22, 2020 N/A· v4 3.1 LOW· v3 3.5 LOW· v2 Elasticsearch versions before 6.8.13 and 7.9.2 contain a document disclosure flaw when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain complex...Show more Elasticsearch versions before 6.8.13 and 7.9.2 contain a document disclosure flaw when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain complex queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices.Show less
CVE-2020-9112 1Huawei 1Taurus An00b Firmware Nov 21, 2024 Oct 19, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a privilege elevation vulnerability. Due to lack of privilege restrictions on some of the business functions of the device. An attacker could exploit this v...Show more Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a privilege elevation vulnerability. Due to lack of privilege restrictions on some of the business functions of the device. An attacker could exploit this vulnerability to access the protecting information, resulting in the elevation of the privilege.Show less
CVE-2020-16940 1Microsoft 8Windows 10 Windows 7Windows 8.1+5 more Feb 23, 2026 Oct 16, 2020 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 <p>An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folde...Show more <p>An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context.</p> <p>To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and delete files or folders of their choosing.</p> <p>The security update addresses the vulnerability by correcting how the Windows User Profile Service handles junction points.</p>Show less

Previous 1...105106107...139 Next