CWE-250

Medium likelihood

Execution with Unnecessary Privileges

Parent: CWE-269 - Improper Privilege Management

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

303 vulnerabilities with CWE-250
CVE-2024-23299 HIGH
macOS - Sandbox Escape
CVSS 8.6
CVE-2024-35142 HIGH
IBM Security Verify Access Docker <10.0.7 - Privilege Escalation
CVSS 8.4
CVE-2024-34477 HIGH
FOG <1.5.10 - Privilege Escalation
CVSS 7.8
CVE-2024-5042 MEDIUM
Submariner - Privilege Escalation
CVSS 6.6
CVE-2024-27260 HIGH
IBM AIX <7.2,7.3 - Privilege Escalation
CVSS 8.4
CVE-2024-27110 HIGH
GE HealthCare EchoPAC - Privilege Escalation
CVSS 8.4
CVE-2024-25967 MEDIUM
Dell PowerScale OneFS <9.7.0.1 - Privilege Escalation
CVSS 6.7
CVE-2024-21003 LOW
Oracle Java SE <8u401, Oracle GraalVM EE <21.3.9 - Info Disclosure
CVSS 3.1
CVE-2024-20999 HIGH
Oracle Solaris <11 - Privilege Escalation
CVSS 8.2
CVE-2024-24245 HIGH
Canimaan Software LTD ClamXAV <3.6.1 - Privilege Escalation
CVSS 7.8
CVE-2024-28005 MEDIUM
Aterm Various - Path Traversal
CVSS 4.7
CVE-2024-0073 HIGH
NVIDIA GPU Display Driver for Windows - RCE
CVSS 7.8
CVE-2024-25421 CRITICAL
Ignite Realtime Openfire <4.9.0 - Privilege Escalation
CVSS 9.8
CVE-2024-22017 HIGH
Node.js >=18.18.0 - Privilege Escalation
CVSS 7.3
CVE-2024-1222 HIGH
PaperCut NG/MF - Privilege Escalation
CVSS 8.6
CVE-2024-23743 LOW
Notion <3.1.0 - RCE
CVSS 3.3
CVE-2023-37412 MEDIUM
IBM Aspera Faspex <5.0.10 - Privilege Escalation
CVSS 4.4
CVE-2023-30998 HIGH
IBM Security Access Manager Docker <10.0.8 - Privilege Escalation
CVSS 7.8
CVE-2023-30997 HIGH
IBM Security Access Manager Docker <10.0.8 - Privilege Escalation
CVSS 7.8
CVE-2023-38042 HIGH
Ivanti Secure Access Client < 22.7 - Privilege Escalation
CVSS 7.8
CVE-2023-42954 MEDIUM
FileMaker Server <20.3.1 - Privilege Escalation
CVSS 4.9
CVE-2023-50015 HIGH
Grandstream GXP14XX <1.0.8.9/GXP16XX <1.0.7.13 - Privilege Escalation
CVSS 8.8
CVE-2023-45592 MEDIUM
AiLux imx6 <imx6_1.0.7-2 - Privilege Escalation
CVSS 6.8
CVE-2023-46360 HIGH
Hardy Barth cPH2 eCharge Ladestation <1.87.0 - Privilege Escalation
CVSS 8.8
CVE-2023-52030 CRITICAL
TOTOlink A3700R <9.1.2u.5822 - RCE
CVSS 9.8
Details
Vulnerabilities 303
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits