Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CVEs (2,753)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-14590 2Intel Netapp 5Cloud Backup Data Availability ServicesGraphics Driver+2 more Nov 21, 2024 Nov 14, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Improper access control in the API for the Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2019-15332 1Lavamobiles 1Z61 Firmware Nov 21, 2024 Nov 14, 2019 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 The Lava Z61 Android device with a build fingerprint of LAVA/Z61_2GB/Z61_2GB:8.1.0/O11019/1533889281:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400,...Show more The Lava Z61 Android device with a build fingerprint of LAVA/Z61_2GB/Z61_2GB:8.1.0/O11019/1533889281:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400, versionName=v4.0.27) that allows any app co-located on the device to programmatically disable and enable Wi-Fi without the corresponding access permission through an exported interface.Show less
CVE-2019-3651 1Mcafee 1Advanced Threat Defense Nov 21, 2024 Nov 13, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too p...Show more Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.Show less
CVE-2010-4664 3Consolekit Project DebianRedhat 3Consolekit Debian LinuxEnterprise Linux Nov 21, 2024 Nov 13, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 In ConsoleKit before 0.4.2, an intended security policy restriction bypass was found. This flaw allows an authenticated system user to escalate their privileges by initiating a remote VNC session.
CVE-2019-2193 1Google 1Android Nov 21, 2024 Nov 13, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In WelcomeActivity.java and related files, there is a possible permissions bypass due to a partially provisioned Device Policy Client. This could lead to local escalation of privilege, leaving an Admin app installed with...Show more In WelcomeActivity.java and related files, there is a possible permissions bypass due to a partially provisioned Device Policy Client. This could lead to local escalation of privilege, leaving an Admin app installed with no indication to the user, with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-132261064Show less
CVE-2019-1405 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1709+12 more Oct 29, 2025 Nov 12, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'.
CVE-2019-1388 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1709+11 more Oct 29, 2025 Nov 12, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows Certificate Dialog Elevation of Privilege Vulnerability'.
CVE-2019-18845 1Patriotmemory 1Viper Rgb Firmware Nov 21, 2024 Nov 9, 2019 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1 allow local users (including low integrity processes) to read and write to arbitrary memory locations, and consequently gain NT AUTHORITY\SYSTEM privi...Show more The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1 allow local users (including low integrity processes) to read and write to arbitrary memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges, by mapping \Device\PhysicalMemory into the calling process via ZwOpenSection and ZwMapViewOfSection.Show less
CVE-2019-18623 1Energycap 1Energycap Nov 21, 2024 Nov 8, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Escalation of privileges in EnergyCAP 7 through 7.5.6 allows an attacker to access data. If an unauthenticated user clicks on a link on the public dashboard, the resource opens in EnergyCAP with access rights matching th...Show more Escalation of privileges in EnergyCAP 7 through 7.5.6 allows an attacker to access data. If an unauthenticated user clicks on a link on the public dashboard, the resource opens in EnergyCAP with access rights matching the user who created the dashboard.Show less
CVE-2006-4243 1Linux Vserver 1Linux Vserver Nov 21, 2024 Nov 6, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 linux vserver 2.6 before 2.6.17 suffers from privilege escalation in remount code.
CVE-2013-4251 4Debian FedoraprojectRedhat+1 more 4Debian Linux Enterprise LinuxFedora+1 more Nov 21, 2024 Nov 4, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories.
CVE-2013-2012 2Autojump Project Debian 2Autojump Debian Linux Nov 21, 2024 Oct 31, 2019 N/A· v4 7.3 HIGH· v3 4.4 MEDIUM· v2 autojump before 21.5.8 allows local users to gain privileges via a Trojan horse custom_install directory in the current working directory.
CVE-2019-18365 1Jetbrains 1Teamcity Nov 21, 2024 Oct 31, 2019 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 In JetBrains TeamCity before 2019.1.4, reverse tabnabbing was possible on several pages.
CVE-2019-18425 4Debian FedoraprojectOpensuse+1 more 4Debian Linux FedoraLeap+1 more Nov 21, 2024 Oct 31, 2019 N/A· v4 9.8 CRITICAL· v3 9.3 HIGH· v2 An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. There is missing descriptor table limit checking in x86 PV emulation. When...Show more An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. There is missing descriptor table limit checking in x86 PV emulation. When emulating certain PV guest operations, descriptor table accesses are performed by the emulating code. Such accesses should respect the guest specified limits, unless otherwise guaranteed to fail in such a case. Without this, emulation of 32-bit guest user mode calls through call gates would allow guest user mode to install and then use descriptors of their choice, as long as the guest kernel did not itself install an LDT. (Most OSes don't install any LDT by default). 32-bit PV guest user mode can elevate its privileges to that of the guest kernel. Xen versions from at least 3.2 onwards are affected. Only 32-bit PV guest user mode can leverage this vulnerability. HVM, PVH, as well as 64-bit PV guests cannot leverage this vulnerability. Arm systems are unaffected.Show less
CVE-2018-18931 1Trms 1Carousel Digital Signage Nov 21, 2024 Oct 29, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An issue was discovered in the Tightrope Media Carousel digital signage product 7.0.4.104. Due to insecure default permissions on the C:\TRMS\Services directory, an attacker who has gained access to the system can elevat...Show more An issue was discovered in the Tightrope Media Carousel digital signage product 7.0.4.104. Due to insecure default permissions on the C:\TRMS\Services directory, an attacker who has gained access to the system can elevate their privileges from a restricted account to full SYSTEM by replacing the Carousel.Service.exe file with a custom malicious executable. This service is independent of the associated IIS web site, which means that this service can be manipulated by an attacker without losing access to vulnerabilities in the web interface (which would potentially be used in conjunction with this attack, to control the service). Once the attacker has replaced Carousel.Service.exe, the server can be restarted using the command "shutdown -r -t 0" from a web shell, causing the system to reboot and launching the malicious Carousel.Service.exe as SYSTEM on startup. If this malicious Carousel.Service.exe is configured to launch a reverse shell back to the attacker, then upon reboot the attacker will have a fully privileged remote command-line environment to manipulate the system further.Show less
CVE-2019-4546 1Ibm 2Maximo For Oil And Gas Maximo Health, Safety And Environment Manager Nov 21, 2024 Oct 29, 2019 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 After installing the IBM Maximo Health- Safety and Environment Manager 7.6.1, a user is granted additional privileges that they are not normally allowed to access. IBM X-Force ID: 165948.
CVE-2019-16897 1K7computing 3K7 Antivirus Premium K7 Total SecurityK7 Ultimate Security Nov 21, 2024 Oct 28, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In K7 Antivirus Premium 16.0.xxx through 16.0.0120; K7 Total Security 16.0.xxx through 16.0.0120; and K7 Ultimate Security 16.0.xxx through 16.0.0120, the module K7TSHlpr.dll improperly validates the administrative privi...Show more In K7 Antivirus Premium 16.0.xxx through 16.0.0120; K7 Total Security 16.0.xxx through 16.0.0120; and K7 Ultimate Security 16.0.xxx through 16.0.0120, the module K7TSHlpr.dll improperly validates the administrative privileges of the user, allowing arbitrary registry writes in the K7AVOptn.dll module to facilitate escalation of privileges via inter-process communication with a service process.Show less
CVE-2019-10716 1Verodin 1Director Nov 21, 2024 Oct 21, 2019 N/A· v4 7.7 HIGH· v3 4.0 MEDIUM· v2 An Information Disclosure issue in Verodin Director 3.5.3.1 and earlier reveals usernames and passwords of integrated security technologies via a /integrations.json JSON REST API request.
CVE-2019-15901 1Doas Project 1Doas Nov 21, 2024 Oct 18, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An issue was discovered in slicer69 doas before 6.2 on certain platforms other than OpenBSD. A setusercontext(3) call with flags to change the UID, primary GID, and secondary GIDs was replaced (on certain platforms: Linu...Show more An issue was discovered in slicer69 doas before 6.2 on certain platforms other than OpenBSD. A setusercontext(3) call with flags to change the UID, primary GID, and secondary GIDs was replaced (on certain platforms: Linux and possibly NetBSD) with a single setuid(2) call. This resulted in neither changing the group id nor initializing secondary group ids.Show less
CVE-2019-17631 2Eclipse Redhat 7Enterprise Linux Enterprise Linux DesktopEnterprise Linux Eus+4 more Nov 21, 2024 Oct 17, 2019 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such as causing a GC or creating a diagnostic file are permitted without any privilege checks.

Previous 1...118119120...138 Next