CWE-269

Medium likelihood

Improper Privilege Management

Parent: CWE-284 - Improper Access Control

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

2,643 vulnerabilities with CWE-269
CVE-2025-6723 MEDIUM
Chef InSpec <5.23 - Privilege Escalation
CVE-2025-13176 HIGH
ESET Inspect Connector - Code Injection
CVE-2025-14975 HIGH
WordPress Custom Login Page Customizer <2.5.4 - Info Disclosure
CVSS 8.1
CVE-2025-13918 MEDIUM
Symantec Endpoint Protection <14.3 RU10 Patch 1-8 - Privilege Escal...
CVSS 6.7
CVE-2025-13917 HIGH
WSS Agent <9.8.5 - Privilege Escalation
CVSS 7.0
CVE-2025-59094 HIGH
Kaba exos 9300 - Privilege Escalation
CVE-2025-66428 HIGH
WordPress Toolkit <6.9.1 - Privilege Escalation
CVSS 8.8
CVE-2025-14533 CRITICAL
Advanced Custom Fields: Extended <0.9.2.1 - Privilege Escalation
CVSS 9.8
CVE-2025-15403 CRITICAL
RegistrationMagic <6.0.7.1 - Privilege Escalation
CVSS 9.8
CVE-2025-67246 HIGH
Ludashi Driver < 5.1025 - Improper Privilege Management
CVSS 7.3
CVE-2025-37186 HIGH
HPE Aruba VIA - Privilege Escalation
CVSS 7.8
CVE-2025-36640 HIGH
Nessus Agent Tray App - Privilege Escalation
CVSS 8.8
CVE-2025-14736 CRITICAL
Frontend Admin by DynamiApps <3.28.25 - Privilege Escalation
CVSS 9.8
CVE-2025-66315 MEDIUM
ZTE MF258K Pro - Privilege Escalation
CVSS 4.3
CVE-2025-47411 HIGH
Apache Streampipes < 0.98.0 - Improper Privilege Management
CVSS 8.1
CVE-2025-69257 MEDIUM
Crates.io Theshit < 0.1.1 - Improper Access Control
CVSS 6.7
CVE-2025-68697 HIGH
n8n <2.0.0 - Privilege Escalation
CVSS 7.1
CVE-2025-52599 MEDIUM
Hanwhavision Xnv-l6080r Firmware - Improper Privilege Management
CVSS 6.5
CVE-2025-57840 LOW
ADB - Privilege Escalation
CVSS 2.2
CVE-2025-67826 HIGH
K7computing K7 Ultimate Security - Improper Privilege Management
CVSS 7.7
CVE-2025-13619 CRITICAL
Flex Store Users <1.1.0 - Privilege Escalation
CVSS 9.8
CVE-2025-58053 CRITICAL
Galette < 1.2.0 - Improper Privilege Management
CVSS 9.8
CVE-2025-66173 MEDIUM
Hikvision DVR - Privilege Escalation
CVSS 6.2
CVE-2025-67793 CRITICAL
Drivelock < 24.1.6 - Improper Privilege Management
CVSS 9.8
CVE-2025-67792 HIGH
Drivelock < 24.1.6 - Improper Privilege Management
CVSS 7.8
Details
Vulnerabilities 2,643
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits