CWE-269

Medium likelihood

Improper Privilege Management

Parent: CWE-284 - Improper Access Control

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

2,837 vulnerabilities with CWE-269
CVE-2020-7288 HIGH
McAfee Exploit Detection and Response for Mac < 3.1.0 - Privilege Escalation
CVSS 7.8
CVE-2020-7287 HIGH
McAfee Exploit Detection and Response for Linux < 3.1.0 - Privilege Escalation
CVSS 7.8
CVE-2020-7286 HIGH
McAfee Exploit Detection and Response < 3.1.0 - Privilege Escalation
CVSS 7.8
CVE-2020-7285 HIGH
McAfee MVISION Endpoint < 20.5.0.94 - Privilege Escalation
CVSS 7.8
CVE-2020-7267 HIGH
McAfee VirusScan Enterprise for Linux < 2.0.3 Hotfix 2635000 - Privilege Escalation via Symbolic Link Manipulation
CVSS 8.8
CVE-2020-7266 HIGH
McAfee VirusScan Enterprise < 1.9.2 - Privilege Escalation via Symbolic Link Manipulation
CVSS 8.8
CVE-2020-7265 HIGH
McAfee Endpoint Security 10.5.0-10.6.8 - Privilege Escalation via Symbolic Link Manipulation
CVSS 8.8
CVE-2020-7264 HIGH
McAfee Endpoint Security < 10.7.0 Hotfix 199847 - Privilege Escalation via Symbolic Link Manipulation
CVSS 8.8
CVE-2020-6652 HIGH
Eaton Intelligent Power Manager < 1.67 - Privilege Escalation via Configuration Upload
CVSS 7.8
CVE-2020-12689 HIGH
OpenStack Keystone <16.0.0 - Privilege Escalation
CVSS 8.8
CVE-2020-12074 HIGH
Import Export WordPress Users < 1.3.9 - Unauthenticated Privilege Escalation via CSV Import
CVSS 8.8
CVE-2020-8474 HIGH
ABB System 800xA Base - Privilege Escalation
CVSS 7.8
CVE-2020-3250 CRITICAL
Cisco UCS Director - Auth Bypass/Path Traversal
CVSS 9.8
CVE-2020-3243 CRITICAL
Cisco UCS Director - Auth Bypass/Path Traversal
CVSS 9.8
CVE-2020-11799 CRITICAL
z-cron 5.6 Build 04 - Unauthenticated Privilege Escalation via Task Modification
CVSS 9.8
CVE-2020-6992 MEDIUM
GE CIMPLICITY < 10.0 - Authenticated Local Privilege Escalation
CVSS 6.7
CVE-2020-1014 HIGH
Microsoft Windows Update Client - Privilege Escalation
CVSS 7.8
CVE-2020-0935 MEDIUM
OneDrive - Elevation of Privilege via Symbolic Link Handling
CVSS 5.5
CVE-2020-7255 LOW
McAfee Endpoint Security for Windows - Privilege Escalation via Unchecked Configuration Editing
CVSS 3.9
CVE-2020-7274 MEDIUM
McAfee Endpoint Security for Windows - Privilege Escalation via McTray.exe
CVSS 6.6
CVE-2020-7273 MEDIUM
McAfee Endpoint Security for Windows - Improper Privilege Management in Autorun Start-Up Protection
CVSS 6.7
CVE-2020-7259 MEDIUM
McAfee Endpoint Security - Privilege Escalation via Crafted Input File
CVSS 6.6
CVE-2020-7257 HIGH
McAfee Endpoint Security for Windows - Privilege Escalation via Symbolic Link Manipulation
CVSS 8.4
CVE-2020-8327 HIGH
Lenovo Vantage <10.2003.10.0 - Privilege Escalation
CVSS 7.3
CVE-2020-6236 HIGH
SAP Landscape Management 3.0 - SAP Adaptive Extensions 1.0 - Privil...
CVSS 7.2
Details
Vulnerabilities 2,837
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits