Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CVEs (2,753)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-5663 1Openbsd 1Textproc/isearch Nov 21, 2024 Dec 30, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The isearch package (textproc/isearch) before 1.47.01nb1 uses the tempnam() function to create insecure temporary files into a publicly-writable area (/tmp).
CVE-2019-20074 1Netis Systems 1Dl4343 Firmware Nov 21, 2024 Dec 30, 2019 N/A· v4 8.8 HIGH· v3 4.0 MEDIUM· v2 On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page.
CVE-2013-5027 1O Dyn 1Collabtive Nov 21, 2024 Dec 27, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Collabtive 1.0 has incorrect access control
CVE-2013-4975 1Hikvision 1Ds 2cd7153 E Firmware Nov 21, 2024 Dec 27, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Hikvision DS-2CD7153-E IP Camera has Privilege Escalation
CVE-2013-4867 1Ea 1Karotz Smart Rabbit Firmware Nov 21, 2024 Dec 27, 2019 N/A· v4 6.3 MEDIUM· v3 6.2 MEDIUM· v2 Electronic Arts Karotz Smart Rabbit 12.07.19.00 allows Python module hijacking
CVE-2019-20043 2Debian Wordpress 2Debian Linux Wordpress Nov 21, 2024 Dec 27, 2019 N/A· v4 4.3 MEDIUM· v3 5.0 MEDIUM· v2 In in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in WordPress 3.7 to 5.3.0, authenticated users who do not have the rights to publish a post are able to mark posts as sticky or unsticky via the RES...Show more In in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in WordPress 3.7 to 5.3.0, authenticated users who do not have the rights to publish a post are able to mark posts as sticky or unsticky via the REST API. For example, the contributor role does not have such rights, but this allowed them to bypass that. This has been patched in WordPress 5.3.1, along with all the previous WordPress versions from 3.7 to 5.3 via a minor release.Show less
CVE-2019-19151 1F5 16Big Ip Access Policy Manager Big Ip Advanced Firewall ManagerBig Ip Analytics+13 more Nov 21, 2024 Dec 23, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 On BIG-IP versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IQ versions 7.0.0, 6.0.0-6.1.0, and 5.0.0-5.4.0, iWorkflow version 2.3.0, and Enterprise Manager version 3.1.1,...Show more On BIG-IP versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IQ versions 7.0.0, 6.0.0-6.1.0, and 5.0.0-5.4.0, iWorkflow version 2.3.0, and Enterprise Manager version 3.1.1, authenticated users granted TMOS Shell (tmsh) privileges are able access objects on the file system which would normally be disallowed by tmsh restrictions. This allows for authenticated, low privileged attackers to access objects on the file system which would not normally be allowed.Show less
CVE-2019-6685 1F5 13Big Ip Access Policy Manager Big Ip Advanced Firewall ManagerBig Ip Analytics+10 more Nov 21, 2024 Dec 23, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, users with access to edit iRules are able to create iRules which can lead to an elevation of privil...Show more On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, users with access to edit iRules are able to create iRules which can lead to an elevation of privilege, configuration modification, and arbitrary system command execution.Show less
CVE-2012-2312 1Redhat 2Jboss Application Server Jboss Enterprise Application Platform Nov 21, 2024 Dec 18, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security contex...Show more An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.Show less
CVE-2019-5259 1Huawei 12Ar120 S Firmware Ar1200 S FirmwareAr1200 Firmware+9 more Nov 21, 2024 Dec 16, 2019 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 There is an information leakage vulnerability on some Huawei products(AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600). An attacker with low permissions can view some high-privileg...Show more There is an information leakage vulnerability on some Huawei products(AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600). An attacker with low permissions can view some high-privilege information by running specific commands.Successful exploit could cause an information disclosure condition.Show less
CVE-2019-19783 4Canonical CyrusDebian+1 more 4Debian Linux FedoraImap+1 more Nov 21, 2024 Dec 16, 2019 N/A· v4 6.5 MEDIUM· v3 3.5 LOW· v2 An issue was discovered in Cyrus IMAP before 2.5.15, 3.0.x before 3.0.13, and 3.1.x through 3.1.8. If sieve script uploading is allowed (3.x) or certain non-default sieve options are enabled (2.x), a user with a mail acc...Show more An issue was discovered in Cyrus IMAP before 2.5.15, 3.0.x before 3.0.13, and 3.1.x through 3.1.8. If sieve script uploading is allowed (3.x) or certain non-default sieve options are enabled (2.x), a user with a mail account on the service can use a sieve script containing a fileinto directive to create any mailbox with administrator privileges, because of folder mishandling in autosieve_createfolder() in imap/lmtp_sieve.c.Show less
CVE-2019-5250 1Huawei 1Mate 20 Pro Firmware Nov 21, 2024 Dec 13, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Mate 20 Pro smartphones with versions earlier than 9.1.0.135(C00E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation of certain privilege, the attacker could t...Show more Mate 20 Pro smartphones with versions earlier than 9.1.0.135(C00E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation of certain privilege, the attacker could trick the user into installing a malicious application before the user turns on student mode function. Successful exploit could allow the attacker to bypass the limit of student mode function.Show less
CVE-2019-16777 5Fedoraproject NpmjsOpensuse+2 more 6Enterprise Linux Enterprise Linux EusFedora+3 more Nov 21, 2024 Dec 13, 2019 N/A· v4 6.5 MEDIUM· v3 5.5 MEDIUM· v2 Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package...Show more Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of packages that also create a serve binary would overwrite the previous serve binary. This behavior is still allowed in local installations and also through install scripts. This vulnerability bypasses a user using the --ignore-scripts install option.Show less
CVE-2019-19726 1Openbsd 1Openbsd Nov 21, 2024 Dec 12, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 OpenBSD through 6.6 allows local users to escalate to root because a check for LD_LIBRARY_PATH in setuid programs can be defeated by setting a very small RLIMIT_DATA resource limit. When executing chpass or passwd (which...Show more OpenBSD through 6.6 allows local users to escalate to root because a check for LD_LIBRARY_PATH in setuid programs can be defeated by setting a very small RLIMIT_DATA resource limit. When executing chpass or passwd (which are setuid root), _dl_setup_env in ld.so tries to strip LD_LIBRARY_PATH from the environment, but fails when it cannot allocate memory. Thus, the attacker is able to execute their own library code as root.Show less
CVE-2019-13738 4Debian FedoraprojectGoogle+1 more 7Chrome Debian LinuxEnterprise Linux Desktop+4 more Nov 21, 2024 Dec 10, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Insufficient policy enforcement in navigation in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass site isolation via a crafted HTML page.
CVE-2013-0293 1Ovirt 1Node Nov 21, 2024 Dec 10, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 oVirt Node: Lock screen accepts F2 to drop to shell causing privilege escalation
CVE-2019-2225 1Google 1Android Nov 21, 2024 Dec 6, 2019 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 When pairing with a Bluetooth device, it may be possible to pair a malicious device without any confirmation from the user, and that device may be able to interact with the phone. This could lead to remote escalation of...Show more When pairing with a Bluetooth device, it may be possible to pair a malicious device without any confirmation from the user, and that device may be able to interact with the phone. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-110433804Show less
CVE-2012-2148 1Redhat 2Jboss Community Application Server Jboss Enterprise Web Server Nov 21, 2024 Dec 6, 2019 N/A· v4 3.3 LOW· v3 1.9 LOW· v2 An issue exists in the property replacements feature in any descriptor in JBoxx AS 7.1.1 ignores java security policies
CVE-2012-1615 1Fedoraproject 2Fedora Sectool Nov 21, 2024 Dec 6, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 A Privilege Escalation vulnerability exits in Fedoraproject Sectool due to an incorrect DBus file.
CVE-2012-1104 2Apereo Debian 2Debian Linux Phpcas Nov 21, 2024 Dec 5, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 A Security Bypass vulnerability exists in the phpCAS 1.2.2 library from the jasig project due to the way proxying of services are managed.

Previous 1...116117118...138 Next