The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
2,778 vulnerabilities with CWE-269
CVE-2025-21343
HIGH
Windows 11 22H2-24H2 - Information Disclosure in Web Threat Defense User Service
CVSS 7.5
CVE-2025-21287
HIGH
Windows 10 1507-24H2 and Windows Server 2008-2012 - Elevation of Privilege via Windows Installer
CVSS 7.8
CVE-2025-22621
MEDIUM
Splunk App SOAR <1.0.67 - Privilege Escalation
CVSS 6.4
CVE-2024-38487
HIGH
Dell Emc VxRail Appliance < 7.0.520 - Improper Privilege Management
CVSS 7.0
CVE-2024-44250
HIGH
Apple macOS <15.1 - Privilege Escalation
CVSS 8.2
CVE-2024-50619
HIGH
CIPPlanner CIPAce < 9.17 - Authenticated Privilege Escalation via User ID Tampering
CVSS 8.8
CVE-2024-13997
HIGH
Nagios XI < 2024R1.1.3 - Authenticated Privilege Escalation via Migrate Server Feature
CVSS 7.2
CVE-2024-14009
HIGH
Nagios XI < 2024R1.0.1 - Authenticated Privilege Escalation via System Profile
CVSS 7.2
CVE-2024-14004
HIGH
Nagios XI < 2024R1.2 - Authenticated Privilege Escalation via NagVis Configuration Handling
CVSS 8.8
CVE-2024-46916
HIGH
Diebold Nixdorf Vynamic Security Suite <= 4.3.0sr06 - Improper Access Control via Early Filesystem Deletion
CVSS 8.1
CVE-2024-47853
HIGH
Mahara <24.04.4 - Privilege Escalation
CVSS 8.8
CVE-2024-13975
HIGH
Commvault for Windows <11.32.0-11.36.0 - Privilege Escalation
CVE-2024-48730
MEDIUM
ETSI OSM <v18 - Privilege Escalation
CVSS 6.5
CVE-2024-48729
HIGH
ETSI OSM <17.0.0 - Privilege Escalation
CVSS 7.1
CVE-2024-41797
MEDIUM
RUGGEDCOM RST2428P,SCALANCE XC316-8,SCALANCE XC324-4,SCALANCE XC324...
CVSS 4.3
CVE-2024-51392
HIGH
OpenKnowledgeMaps Headstart v7 - Privilege Escalation
CVSS 8.8
CVE-2024-41199
HIGH
Ocuco Innovation JOBMANAGER.EXE 2.10.24.16 - Unauthenticated Privilege Escalation via Crafted TCP Packet
CVSS 7.2
CVE-2024-40462
HIGH
Ocuco Innovation <2.10.24.51 - Privilege Escalation
CVSS 7.8
CVE-2024-40461
HIGH
Ocuco Innovation <2.10.24.51 - Privilege Escalation
CVSS 7.8
CVE-2024-40460
HIGH
Ocuco Innovation <2.10.24.51 - Privilege Escalation
CVSS 7.8
CVE-2024-40459
HIGH
Ocuco Innovation APPMANAGER.EXE <2.10.24.51 - Privilege Escalation
CVSS 7.8
CVE-2024-40458
HIGH
Ocuco Innovation Tracking.exe <2.10.24.51 - Privilege Escalation
CVSS 7.8
CVE-2024-8100
HIGH
Arista CloudVision Portal - Privilege Escalation
CVSS 8.7
CVE-2024-22036
CRITICAL
Rancher 2.7.0-2.7.15, 2.8.0-2.8.8, 2.9.0-2.9.2 - Privilege Escalation via Chroot Escape
CVSS 9.1
CVE-2024-58104
HIGH
Trend Micro Apex One - Local Privilege Escalation via Security Agent Plug-in UI Manager
CVSS 7.3
Details
Vulnerabilities
2,778
Exploit Likelihood
Medium