Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CVEs (2,755)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-5468 1Gitlab 1Gitlab Nov 21, 2024 Jan 28, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 An privilege escalation issue was discovered in Gitlab versions < 12.1.2, < 12.0.4, and < 11.11.6 when Mattermost slash commands are used with a blocked account.
CVE-2019-11288 1Pivotal 2Tc Runtimes Tc Server Nov 21, 2024 Jan 27, 2020 N/A· v4 7.0 HIGH· v3 1.9 LOW· v2 In Pivotal tc Server, 3.x versions prior to 3.2.19 and 4.x versions prior to 4.0.10, and Pivotal tc Runtimes, 7.x versions prior to 7.0.99.B, 8.x versions prior to 8.5.47.A, and 9.x versions prior to 9.0.27.A, when a tc...Show more In Pivotal tc Server, 3.x versions prior to 3.2.19 and 4.x versions prior to 4.0.10, and Pivotal tc Runtimes, 7.x versions prior to 7.0.99.B, 8.x versions prior to 8.5.47.A, and 9.x versions prior to 9.0.27.A, when a tc Runtime instance is configured with the JMX Socket Listener, a local attacker without access to the tc Runtime process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the tc Runtime instance.Show less
CVE-2020-3115 1Cisco 1Sd Wan Firmware Nov 21, 2024 Jan 26, 2020 N/A· v4 8.8 HIGH· v3 7.2 HIGH· v2 A vulnerability in the CLI of the Cisco SD-WAN Solution vManage software could allow an authenticated, local attacker to elevate privileges to root-level privileges on the underlying operating system. The vulnerability i...Show more A vulnerability in the CLI of the Cisco SD-WAN Solution vManage software could allow an authenticated, local attacker to elevate privileges to root-level privileges on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted file to the affected system. An exploit could allow the attacker to elevate privileges to root-level privileges.Show less
CVE-2019-1454 1Microsoft 8Windows 10 Windows 7Windows 8.1+5 more Nov 21, 2024 Jan 24, 2020 N/A· v4 5.5 MEDIUM· v3 3.6 LOW· v2 An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles symlinks, aka 'Windows User Profile Service Elevation of Privilege Vulnerability'.
CVE-2018-8654 1Microsoft 1Dynamics 365 Nov 21, 2024 Jan 24, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 An elevation of privilege vulnerability exists in Microsoft Dynamics 365 Server, aka 'Microsoft Dynamics 365 Elevation of Privilege Vulnerability'.
CVE-2012-6302 1Soapbox Project 1Soapbox Nov 21, 2024 Jan 24, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Soapbox through 0.3.1: Sandbox bypass - runs a second instance of Soapbox within a sandboxed Soapbox.
CVE-2012-4606 1Citrix 1Xenserver Nov 21, 2024 Jan 23, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Citrix XenServer 4.1, 6.0, 5.6 SP2, 5.6 Feature Pack 1, 5.6 Common Criteria, 5.6, 5.5, 5.0, and 5.0 Update 3 contains a Local Privilege Escalation Vulnerability which could allow local users with access to a guest operat...Show more Citrix XenServer 4.1, 6.0, 5.6 SP2, 5.6 Feature Pack 1, 5.6 Common Criteria, 5.6, 5.5, 5.0, and 5.0 Update 3 contains a Local Privilege Escalation Vulnerability which could allow local users with access to a guest operating system to gain elevated privileges.Show less
CVE-2019-18899 2Apt Cacher Ng Project Opensuse 2Apt Cacher Ng Backports Nov 21, 2024 Jan 23, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt-cacher-ng with root privileges. This can allow local attackers to influence the outcome of these operations. This issue aff...Show more The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt-cacher-ng with root privileges. This can allow local attackers to influence the outcome of these operations. This issue affects: openSUSE Leap 15.1 apt-cacher-ng versions prior to 3.1-lp151.3.3.1.Show less
CVE-2019-17202 1Fasttracksoftware 1Admin By Request Nov 21, 2024 Jan 23, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 FastTrack Admin By Request 6.1.0.0 supports group policies that are supposed to allow only a select range of users to elevate to Administrator privilege at will. If a user does not have direct access to the elevation fea...Show more FastTrack Admin By Request 6.1.0.0 supports group policies that are supposed to allow only a select range of users to elevate to Administrator privilege at will. If a user does not have direct access to the elevation feature through group policies, they are prompted to enter a PIN code in a challenge-response manner upon attempting to elevate privileges. The challenge's response uses a simple algorithm that can be easily emulated via data (customer ID and device name) available to all users, and thus any user can elevate to Administrator privilege.Show less
CVE-2013-6773 1Splunk 1Splunk Nov 21, 2024 Jan 23, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Splunk 5.0.3 has an Unquoted Service Path in Windows for Universal Forwarder which can allow an attacker to escalate privileges
CVE-2018-16272 1Samsung 10Galaxy Gear Firmware Gear 2 FirmwareGear Fit 2 Firmware+7 more Nov 21, 2024 Jan 22, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. This affects Tizen-based f...Show more The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.Show less
CVE-2018-16271 1Samsung 10Galaxy Gear Firmware Gear 2 FirmwareGear Fit 2 Firmware+7 more Nov 21, 2024 Jan 22, 2020 N/A· v4 6.5 MEDIUM· v3 3.3 LOW· v2 The wemail_consumer_service (from the built-in application wemail) in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox, due to improper D-Bus security policy configurations. An arb...Show more The wemail_consumer_service (from the built-in application wemail) in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox, due to improper D-Bus security policy configurations. An arbitrary email can also be sent from the mailbox via the paired smartphone. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.Show less
CVE-2018-16270 1Samsung 10Galaxy Gear Firmware Gear 2 FirmwareGear Fit 2 Firmware+7 more Nov 21, 2024 Jan 22, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. This allows an unprivileged process to dump Bluetooth HCI packets to an arbitrary file path.
CVE-2018-16268 1Linux 1Tizen Nov 21, 2024 Jan 22, 2020 N/A· v4 4.3 MEDIUM· v3 3.3 LOW· v2 The SoundServer/FocusServer system services in Tizen allow an unprivileged process to perform media-related system actions, due to improper D-Bus security policy configurations. Such actions include playing an arbitrary...Show more The SoundServer/FocusServer system services in Tizen allow an unprivileged process to perform media-related system actions, due to improper D-Bus security policy configurations. Such actions include playing an arbitrary sound file or DTMF tones. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.Show less
CVE-2018-16267 1Linux 1Tizen Nov 21, 2024 Jan 22, 2020 N/A· v4 8.1 HIGH· v3 4.8 MEDIUM· v2 The system-popup system service in Tizen allows an unprivileged process to perform popup-related system actions, due to improper D-Bus security policy configurations. Such actions include the triggering system poweroff m...Show more The system-popup system service in Tizen allows an unprivileged process to perform popup-related system actions, due to improper D-Bus security policy configurations. Such actions include the triggering system poweroff menu, and prompting a popup with arbitrary strings. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.Show less
CVE-2018-16266 1Linux 1Tizen Nov 21, 2024 Jan 22, 2020 N/A· v4 8.1 HIGH· v3 4.8 MEDIUM· v2 The Enlightenment system service in Tizen allows an unprivileged process to fully control or capture windows, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwa...Show more The Enlightenment system service in Tizen allows an unprivileged process to fully control or capture windows, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.Show less
CVE-2018-16265 1Linux 1Tizen Nov 21, 2024 Jan 22, 2020 N/A· v4 6.5 MEDIUM· v3 3.3 LOW· v2 The bt/bt_core system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. This affects Tizen...Show more The bt/bt_core system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.Show less
CVE-2018-16263 1Linux 1Tizen Nov 21, 2024 Jan 22, 2020 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 The PulseAudio system service in Tizen allows an unprivileged process to control its A2DP MediaEndpoint, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares i...Show more The PulseAudio system service in Tizen allows an unprivileged process to control its A2DP MediaEndpoint, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.Show less
CVE-2018-16262 1Linux 1Tizen Nov 21, 2024 Jan 22, 2020 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 The pkgmgr system service in Tizen allows an unprivileged process to perform package management actions, due to improper D-Bus security policy configurations. Such actions include installing, decrypting, and killing othe...Show more The pkgmgr system service in Tizen allows an unprivileged process to perform package management actions, due to improper D-Bus security policy configurations. Such actions include installing, decrypting, and killing other packages. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.Show less
CVE-2020-7047 1Webfactoryltd 1Wp Database Reset Nov 21, 2024 Jan 16, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users request) to escalate...Show more The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users request) to escalate their privileges to administrator while dropping all other users from the table.Show less

Previous 1...114115116...138 Next