CWE-269

Medium likelihood

Improper Privilege Management

Parent: CWE-284 - Improper Access Control

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

2,832 vulnerabilities with CWE-269
CVE-2023-39734 HIGH
VISION MEAT WORKS TrackDiner10/10_mc Line 13.6.1 - Improper Privilege Management
CVSS 8.2
CVE-2023-39733 HIGH
TonTon-Tei Line 13.6.1 - Improper Privilege Management
CVSS 8.2
CVE-2023-39732 HIGH
Tokueimaru_waiting 13.6.1 - Client Secret Leakage and Unauthorized Broadcast Message Sending
CVSS 8.2
CVE-2023-34045 MEDIUM
VMware Fusion <13.5 - Privilege Escalation
CVSS 6.6
CVE-2023-46277 HIGH
Pleaser <0.5.5 - Privilege Escalation
CVSS 7.8
CVE-2023-27795 HIGH
Ixpdata Easyinstall - Improper Privilege Management
CVSS 7.8
CVE-2023-27793 HIGH
Ixpdata Easyinstall - Improper Privilege Management
CVSS 7.8
CVE-2023-45883 HIGH
Qumu Multicast Extension <2.0.63 - Privilege Escalation
CVSS 7.8
CVE-2023-41715 HIGH
SonicOS < 7.0.1-5145 - Authenticated Privilege Escalation in SSL VPN Tunnel
CVSS 8.8
CVE-2023-22099 HIGH
Oracle VM VirtualBox <7.0.12 - Privilege Escalation
CVSS 8.2
CVE-2023-20598 HIGH
AMD Radeon Software < 23.9.2 and < 23.q4 - Authenticated Arbitrary Code Execution via IOCTL Request
CVSS 7.8
CVE-2023-43120 HIGH
Extreme Networks Switch Engine <32.5.1.5-31.7.1 - Privilege Escalation
CVSS 8.8
CVE-2023-4834 MEDIUM
Red Lion Europe <2.14.2 - Info Disclosure
CVSS 4.3
CVE-2023-4822 MEDIUM
Grafana 8.0.0-9.4.15 - Authenticated Privilege Escalation via Organization Role Permissions
CVSS 6.7
CVE-2023-44809 CRITICAL
D-Link DIR-820L 1.05B03 - Insecure Permissions
CVSS 9.8
CVE-2023-38280 HIGH
IBM HMC <10.2.1030.0 - Privilege Escalation
CVSS 8.4
CVE-2023-40377 MEDIUM
IBM i 7.2-7.4 - Local Privilege Escalation via BRMS
CVSS 4.9
CVE-2023-40378 MEDIUM
IBM Directory Server for IBM i - Local Privilege Escalation
CVSS 4.9
CVE-2023-27316 HIGH
SnapCenter <4.9 - Privilege Escalation
CVSS 8.8
CVE-2023-38817 HIGH
Inspect Element Ltd Echo.ac <5.2.1.0 - Privilege Escalation
CVSS 7.8
CVE-2023-43960 HIGH
DLink DPH-400SE FRU <2.2.15.8 - Privilege Escalation
CVSS 8.8
CVE-2023-4936 MEDIUM
Synaptics DisplayLink < 11.2 - DLL Sideloading During Installation
CVSS 5.5
CVE-2023-44105 CRITICAL
Window Management Module - Privilege Escalation
CVSS 9.8
CVE-2023-44106 CRITICAL
HarmonyOS - Improper Privilege Management in Fwk-Display Module
CVSS 9.8
CVE-2023-36721 HIGH
Windows Error Reporting Service - Privilege Escalation
CVSS 7.0
Details
Vulnerabilities 2,832
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits