Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-250

CWE-250

Medium likelihood

Execution with Unnecessary Privileges

Parent: CWE-269 - Improper Privilege Management

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

326 vulnerabilities with CWE-250

CVE-2022-38694 HIGH

Unisoc SC9863A/T310/T610/T618 - Local Privilege Escalation via Unchecked BootRom Write Address

CVE-2022-38691 HIGH

Unisoc SC9863A/T310/T610/T618 - Local Privilege Escalation via BootROM Certificate Type Validation Bypass

CVE-2022-34384 HIGH

Dell SupportAssist and Update < 4.5.0 - Local Privilege Escalation in Advanced Driver Restore

CVE-2022-41290 HIGH

IBM AIX <7.4 - Privilege Escalation

CVE-2022-43553 HIGH

EdgeMax EdgeRouter Firmware < 2.0.9-hotfix.5 - Authenticated Remote Code Execution via Operator Account

CVE-2022-3088 HIGH

UC-8100A-ME-T <v3.5 - Path Traversal

CVE-2022-41950 MEDIUM

super_xray 0.2-beta - Privilege Escalation via Inaccurate Default Permissions

CVE-2022-44544 CRITICAL

Mahara 21.04.0-21.04.6, 21.10.0-21.10.4, 22.04.0-22.04.2 - Remote Code Execution via PDF Export with Ghostscript

CVE-2022-39286 HIGH

Jupyter Core <4.11.2 - Code Injection

CVE-2022-22239 HIGH

Juniper Networks Junos OS Evolved - Privilege Escalation

CVE-2022-40182 HIGH

Desigo PXM30-1 <V02.20.126.11-41 - Info Disclosure

CVE-2022-2634 CRITICAL

Digi ConnectPort X2d <2020-01-01 - Unauthenticated RCE via File Upload

CVE-2022-1744 MEDIUM

Dominion Voting Systems ImageCast X - Privilege Escalation

CVE-2022-1517 CRITICAL

Illumina Local Run Manager 1.3 to 3.1 - Unauthenticated Remote Code Execution

CVE-2022-32535 MEDIUM

Bosch Ethernet switch PRA-ES8P2S <1.01.05 - Privilege Escalation

CVE-2022-1808 HIGH

polonel/trudesk <1.2.3 - Privilege Escalation

CVE-2022-30695 HIGH

Acronis Snap Deploy <3640 - Privilege Escalation

CVE-2022-0071 HIGH

Hotdog <1.0.2 - Privilege Escalation

CVE-2022-0070 HIGH

Apache Log4j - Privilege Escalation

CVE-2022-20676 MEDIUM

Cisco IOS XE - Privilege Escalation

CVE-2022-27578 HIGH

SICK Overall Equipment Effectiveness - Privilege Escalation via Writable Installation Directory

CVE-2022-24113 HIGH

Acronis Agent < 27147 - Local Privilege Escalation via Excessive Child Process Permissions

CVE-2022-21699 HIGH

IPython < 5.10.0 - Arbitrary Code Execution via Cross-User Temporary File Mismanagement

CVE-2021-47700 HIGH

Nagios XI <5.8.7 - Privilege Escalation

CVE-2021-38118 MEDIUM

OpenText iManager <3.2.4.0000 - Info Disclosure

Previous Page 11 of 14 Next

Details

Vulnerabilities 326

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy