CWE-269

Medium likelihood

Improper Privilege Management

Parent: CWE-284 - Improper Access Control

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

2,772 vulnerabilities with CWE-269
CVE-2025-15576 HIGH
FreeBSD Jails - Privilege Escalation
CVSS 7.5
CVE-2025-15547 HIGH
FreeBSD Jail - Privilege Escalation
CVSS 8.8
CVE-2025-8899 HIGH
Paid Videochat Turnkey Site - Privilege Escalation
CVSS 8.8
CVE-2025-29165 CRITICAL
D-Link DIR-1253 MESH V1.6.1684 - Privilege Escalation
CVSS 9.8
CVE-2025-63909 HIGH
Cohesity TranZman 4.0 Build 14614 - Privilege Escalation
CVSS 7.2
CVE-2025-48645 HIGH
DeviceAdminInfo.java - Privilege Escalation
CVSS 7.8
CVE-2025-48613 HIGH
Android - Local Privilege Escalation via VBMeta Test Key Resigning
CVSS 7.8
CVE-2025-12981 CRITICAL
Listee Theme for WordPress <=1.1.6 - Privilege Escalation
CVSS 9.8
CVE-2025-40538 CRITICAL
SolarWinds Serv-U < 15.5.4 - Authenticated Privilege Escalation via Admin User Creation
CVSS 9.1
CVE-2025-15561 HIGH
WorkTime Daemon - Privilege Escalation
CVSS 7.8
CVE-2025-13851 CRITICAL
Buyent Classified Plugin 1.0.7 - Privilege Escalation
CVSS 9.8
CVE-2025-13563 CRITICAL
Lizza LMS Pro <1.0.3 - Privilege Escalation
CVSS 9.8
CVE-2025-12882 CRITICAL
Clasifico Listing Plugin <2.0 - Privilege Escalation
CVSS 9.8
CVE-2025-67905 HIGH
Malwarebytes AdwCleaner <8.7.0 - Privilege Escalation
CVSS 8.7
CVE-2025-8572 CRITICAL
Truelysell Core <1.8.7 - Privilege Escalation
CVSS 9.8
CVE-2025-46310 MEDIUM
macOS <15.7.4/<14.8.4 - Privilege Escalation
CVSS 6.0
CVE-2025-64487 HIGH
Outline <1.1.0 - Privilege Escalation
CVSS 7.6
CVE-2025-15100 HIGH
JAY Login & Register <2.6.03 - Privilege Escalation
CVSS 8.8
CVE-2025-15027 CRITICAL
JAY Login & Register <2.6.03 - Privilege Escalation
CVSS 9.8
CVE-2025-69875 HIGH
Quick Heal Total Security 23.0.0 - Privilege Escalation via Quarantine Restore Path Manipulation
CVSS 7.8
CVE-2025-66374 HIGH
CyberArk Endpoint Privilege Manager < 25.10.0 - Local Privilege Escalation via Policy Elevation
CVSS 7.8
CVE-2025-15030 CRITICAL
User Profile Builder <3.15.2 - Info Disclosure
CVSS 9.8
CVE-2025-6723 MEDIUM
Chef InSpec <5.23 - Privilege Escalation
CVE-2025-13176 HIGH
ESET Inspect Connector - Code Injection
CVE-2025-14975 HIGH
WordPress Custom Login Page Customizer <2.5.4 - Info Disclosure
CVSS 8.1
Details
Vulnerabilities 2,772
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits