Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-250

CWE-250

Medium likelihood

Execution with Unnecessary Privileges

Parent: CWE-269 - Improper Privilege Management

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

326 vulnerabilities with CWE-250

CVE-2024-38813 HIGH KEV

VMware Cloud Foundation >=4.0 <5.2 and vCenter Server - Privilege Escalation to Root via Network Packet

CVE-2024-8767 CRITICAL

Acronis Backup plugin for cPanel & WHM < 619 - Sensitive Data Disclosure and Manipulation via Unnecessary Privileges

CVE-2024-7387 CRITICAL

OpenShift Builder - Command Injection via Path Traversal in BuildConfig Secret DestinationDir

CVE-2024-35783 CRITICAL

SIMATIC BATCH V9.1, SIMATIC Information Server 2020 <V2020 SP2 Upda...

CVE-2024-42024 HIGH

Veeam ONE 12.0.0.2498-12.2.0.4093 - Remote Code Execution via Agent Service Account

CVE-2024-45034 HIGH

Apache Airflow <2.10.1 - Code Injection

CVE-2024-5623 HIGH

B&R APROL <= R 4.4-00P3 - Privilege Escalation

CVE-2024-5622 HIGH

B&R APROL <4.2.07P3, <4.4-00P3 - Privilege Escalation

CVE-2024-20478 MEDIUM

Cisco APIC/Cloud Network Controller - Code Injection

CVE-2024-36398 HIGH

SINEC NMS <V3.0 - Privilege Escalation

CVE-2024-6913 HIGH

PerkinElmer ProcessPlus <1.11.6507.0 - Privilege Escalation

CVE-2024-20435 HIGH

Cisco AsyncOS - Authenticated Privilege Escalation via CLI Command Injection

CVE-2024-6834 CRITICAL

APIML Spring Cloud Gateway - Privilege Escalation

CVE-2024-21184 HIGH

Oracle Database <19.23 - Privilege Escalation

CVE-2024-35154 HIGH

IBM WebSphere Application Server <9.0 - Authenticated RCE

CVE-2024-32853 MEDIUM

Dell PowerScale OneFS <9.7.0.2 - Privilege Escalation

CVE-2024-3330 CRITICAL

Spotfire Analyst and Server - Remote Code Execution

CVE-2024-31890 HIGH

IBM TCP/IP <7.5 - Privilege Escalation

CVE-2024-3498 HIGH

Printer <version> - Privilege Escalation

CVE-2024-27147 HIGH

Toshiba Printers - Privilege Escalation

CVE-2024-27146 MEDIUM

Toshiba Printers - Privilege Escalation

CVE-2024-27143 CRITICAL

Toshiba Tec e-Studio multi-function peripheral (MFP) - Unauthenticated Remote Code Execution via SNMP Private Community

CVE-2024-0084 HIGH

NVIDIA vGPU < 13.11 - Privilege Escalation via Virtual GPU Manager

CVE-2024-23299 HIGH

macOS < 12.7.4, < 13.6.5, < 14.4 - Sandbox Escape via Privilege Escalation

CVE-2024-35142 HIGH

IBM Security Verify Access Docker <10.0.7 - Privilege Escalation

Previous Page 8 of 14 Next

Details

Vulnerabilities 326

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy