Search

Blog Stats Labs CLI MCP API Limits About Privacy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Blog Statistics Labs CLI Tool MCP Server API Documentation Rate Limits About Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-267

CWE-267

Privilege Defined With Unsafe Actions

Parent: CWE-269 - Improper Privilege Management

A particular privilege, role, capability, or right can be used to perform unsafe actions that were not intended, even when it is assigned to the correct entity.

59 vulnerabilities with CWE-267

CVE-2026-2460 HIGH

REB500 - Privilege Escalation

CVE-2026-2459 HIGH

REB500 - Privilege Escalation

CVE-2025-14349 HIGH

Universal Software Inc. FlexCity/Kiosk <1.0.36 - Privilege Escalation

CVE-2026-0945 MEDIUM

Drupal Role Delegation <1.5.0 - Privilege Escalation

CVE-2025-13979 MEDIUM

Salsa.digital Mini Site < 3.0.2 - XSS

CVE-2026-23526 HIGH

CVAT <2.54.0 - Privilege Escalation

CVE-2025-53900 MEDIUM

Kiteworks MFT <9.1.0 - Privilege Escalation

CVE-2025-62641 HIGH

Oracle VM VirtualBox <7.2.2 - Privilege Escalation

CVE-2025-62591 MEDIUM

Oracle VM VirtualBox <7.2.2 - Privilege Escalation

CVE-2025-62590 HIGH

Oracle VM VirtualBox <7.2.2 - Privilege Escalation

CVE-2025-62589 HIGH

Oracle VM VirtualBox <7.2.2 - Privilege Escalation

CVE-2025-62588 HIGH

Oracle VM VirtualBox <7.2.2 - Privilege Escalation

CVE-2025-62587 HIGH

Oracle VM VirtualBox <7.2.2 - Privilege Escalation

CVE-2025-62480 LOW

Oracle Zfs Storage Appliance Kit - Denial of Service

CVE-2025-62479 LOW

Oracle Zfs Storage Appliance Kit - Denial of Service

CVE-2025-62289 MEDIUM

Oracle Zfs Storage Appliance Kit - Denial of Service

CVE-2025-62288 MEDIUM

Oracle Health Sciences Data Management Workbench <3.4.1.0.10 - Unau...

CVE-2025-61754 MEDIUM

Oracle Analytics Web Service API <8.2.0.0.0 - Unauthorized Access

CVE-2025-53070 MEDIUM

Oracle Solaris - Denial of Service

CVE-2025-41244 HIGHKEV

Vmware Aria Operations < 8.18.5 - Privilege Escalation

CVE-2025-7691 MEDIUM

GitLab EE <18.2.7-<18.3.3-<18.4.1 - Privilege Escalation

CVE-2025-26467 HIGH

Apache Cassandra <4.0.16 - Privilege Escalation

CVE-2025-47811 MEDIUM

Wftpserver Wing FTP Server < 7.4.4 - Privilege Escalation

CVE-2025-7030 MEDIUM

Drupal TFA <1.11.0 - Privilege Escalation

Google Cloud Platform - Privilege Escalation

Page 1 of 3 Next

Details

Vulnerabilities 59

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy