CWE-269

Medium likelihood

Improper Privilege Management

Parent: CWE-284 - Improper Access Control

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

2,837 vulnerabilities with CWE-269
CVE-2020-6968 HIGH
Honeywell INNCOM INNControl 3.0-3.21 - Privilege Escalation via Local Configuration File Modification
CVSS 7.8
CVE-2020-3112 HIGH
Cisco Data Center Network Manager < 11.3(1) - Authenticated Privilege Escalation via REST API
CVSS 8.8
CVE-2020-0686 HIGH
Windows Installer - Elevation of Privilege via Symbolic Link Processing
CVSS 7.8
CVE-2020-1708 HIGH
openshift/mysql-apb - Privilege Escalation
CVSS 7.0
CVE-2020-8655 HIGH KEV
EyesOfNetwork <5.3 - Privilege Escalation
CVSS 7.8
CVE-2020-5182 MEDIUM
J-BusinessDirectory < 5.2.9 - Reverse Tabnabbing via Business Website Link
CVSS 6.5
CVE-2020-8092 LOW
Bitdefender Antivirus for Mac <8.0.0 - Privilege Escalation
CVSS 1.6
CVE-2020-7908 MEDIUM
JetBrains TeamCity <2019.1.5 - Info Disclosure
CVSS 4.3
CVE-2020-3115 HIGH
Cisco SD-WAN Solution vManage - Privilege Escalation
CVSS 8.8
CVE-2020-7047 HIGH
WP Database Reset < 3.1 - Authenticated Privilege Escalation via Database Reset Request
CVSS 8.8
CVE-2020-0635 HIGH
Windows - Elevation of Privilege via Symbolic Link Handling
CVSS 7.8
CVE-2020-6949 HIGH
HashBrown CMS < 1.3.3 - Privilege Escalation via postUser Function
CVSS 8.8
CVE-2019-13690 CRITICAL
Google Chrome <75.0.3770.80 - Privilege Escalation
CVSS 9.6
CVE-2019-25151 MEDIUM
Funnel Builder <1.3.0 - Auth Bypass
CVSS 5.4
CVE-2019-25071 MEDIUM
iPhone OS < 13.0 - Unauthenticated Command Execution via Siri Audio/Video File Trigger
CVSS 6.3
CVE-2019-25068 MEDIUM
Axios Italia Axios RE <1.7.0-7.0.0 - Privilege Escalation
CVSS 6.3
CVE-2019-25066 MEDIUM
ajenti <2.1.31 - Privilege Escalation
CVSS 6.3
CVE-2019-9971 HIGH
3CX Phone System 16.0.0.1570 - Privilege Escalation
CVSS 8.8
CVE-2019-18916 HIGH
HP LaserJet Solution Software - Privilege Escalation
CVSS 7.8
CVE-2019-14453 HIGH
Comelit App lejos de casa <2.8.0 - Privilege Escalation
CVSS 8.8
CVE-2019-19354 HIGH
Red Hat Openshift 4 - Privilege Escalation
CVSS 7.8
CVE-2019-11847 HIGH
ALEOS <4.11.0-4.4.9 - Privilege Escalation
CVSS 7.3
CVE-2019-4589 MEDIUM
IBM Cognos Analytics <11.1 - Privilege Escalation
CVSS 4.3
CVE-2019-20886 HIGH
Mattermost Server < 5.8.0 - Improper Privilege Management
CVSS 7.5
CVE-2019-3588 MEDIUM
McAfee VirusScan Enterprise < 8.8 Patch 14 - Privilege Escalation via On-Access Scan Threat Alert Window
CVSS 6.3
Details
Vulnerabilities 2,837
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits