CWE-269

Medium likelihood

Improper Privilege Management

Parent: CWE-284 - Improper Access Control

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

2,834 vulnerabilities with CWE-269
CVE-2022-23455 HIGH
HP Support Assistant < 9.11 - Privilege Escalation and Unauthorized File Modification
CVSS 7.8
CVE-2022-45101 HIGH
Dell PowerScale OneFS 9.1.0.0-9.1.0.25 - Unauthenticated Remote Code Execution and Information Disclosure via NFS
CVSS 7.3
CVE-2022-4441 HIGH
Hitachi Storage Plug-in for VMware vCenter 04.9.0 - Authenticated Privilege Escalation
CVSS 7.6
CVE-2022-4041 MEDIUM
Hitachi Storage Plug-in for VMware vCenter <4.9.1 - Privilege Escal...
CVSS 5.9
CVE-2022-46359 HIGH
HP Security Manager - Privilege Escalation, RCE, Info Disclosure
CVSS 8.8
CVE-2022-46358 HIGH
HP Security Manager - Privilege Escalation, RCE, Info Disclosure
CVSS 8.8
CVE-2022-46357 HIGH
HP Security Manager - Privilege Escalation, RCE, Info Disclosure
CVSS 8.8
CVE-2022-46356 HIGH
HP Security Manager - Privilege Escalation, RCE, Info Disclosure
CVSS 8.8
CVE-2022-43997 HIGH
Riverbed Aternity <12.1.4.27 - Privilege Escalation
CVSS 7.8
CVE-2022-38775 HIGH
Elastic Endpoint Security for Windows - Privilege Escalation
CVSS 7.8
CVE-2022-38774 HIGH
Elastic Endpoint Security/Elastic Endgame - Privilege Escalation
CVSS 7.8
CVE-2022-25631 HIGH
Symantec Endpoint Protection < 14.3.9210.6000 - Elevation of Privilege
CVSS 7.8
CVE-2022-39182 MEDIUM
Tardis 2000 1.6 - Privilege Escalation
CVSS 4.9
CVE-2022-4294 HIGH
Avira Security < 1.1.78 - Privilege Escalation
CVSS 7.1
CVE-2022-0668 MEDIUM
JFrog Artifactory <7.37.13 - Auth Bypass
CVSS 5.3
CVE-2022-43535 HIGH
Aruba ClearPass <6.10.7, <6.9.12 - Privilege Escalation
CVSS 7.8
CVE-2022-43534 HIGH
Aruba ClearPass <6.10.7, <6.9.12 - Privilege Escalation
CVSS 7.8
CVE-2022-43533 HIGH
ClearPass OnGuard <6.10.7-6.9.12 - Privilege Escalation
CVSS 7.8
CVE-2022-4808 HIGH
usememos/memos <0.9.1 - Privilege Escalation
CVSS 8.8
CVE-2022-46172 MEDIUM
authentik <2022.10.4, 2022.11.4 - Auth Bypass
CVSS 6.4
CVE-2022-45963 CRITICAL
H3C SecPath Firewall < 3.10_ess6703 - Privilege Escalation
CVSS 9.8
CVE-2022-37706 HIGH
Ubuntu Enlightenment Mount Priv Esc
CVSS 7.8
CVE-2022-41290 HIGH
IBM AIX <7.4 - Privilege Escalation
CVSS 8.4
CVE-2022-38757 HIGH
Micro Focus ZENworks <2020 Update 3a - Privilege Escalation
CVSS 7.2
CVE-2022-4687 HIGH
usememos/memos <0.9.0 - Privilege Escalation
CVSS 8.1
Details
Vulnerabilities 2,834
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits