416 matches found
The vulnerability of the org.xwiki.platform:xwiki-platform-security-authorization-api component of the XWiki Platform, a platform for creating collaborative web applications. This vulnerability allows an attacker to gain unauthorized access to protected information.
The vulnerability of the org.xwiki.platform:xwiki-platform-security-authorization-api component of the XWiki Platform lies in the insecure management of privileges. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the Splunk App for SOAR software lies in its insecure management of privileges, allowing attackers to elevate their privileges.
The vulnerability of the Splunk App for SOAR software relates to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...
The vulnerability of the tool for configuring and managing Linux operating system’s iptables packet filtering rules stems from insecure privilege management, allowing a malicious actor to execute arbitrary bash commands.
The vulnerability of the tool for configuring and managing iptables packet filtering rules in Linux operating systems is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to execute arbitrary bash commands by adding comments to security rules fro...
ROS-20250303-03
A vulnerability in the Linux operating system's dmidecode utility is related to insecure privilege management. Exploitation of the vulnerability could allow an attacker to escalate privileges...
The vulnerability of the distributed database management system Apache Cassandra lies in its insecure handling of privileges, allowing attackers to elevate their own privileges.
The vulnerability of the distributed database management system Apache Cassandra lies in the insecure management of privileges. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...
The vulnerability of the VMware Aria Operations for Logs network log analysis tool, related to insecure privilege management, allows an attacker to perform certain operations in the context of the administrative user.
The vulnerability of the VMware Aria Operations for Logs network log analysis tool is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to perform certain operations from the perspective of a user administrating the system remotely...
The vulnerability of the VMware Aria Operations for Logs network log analysis tool arises due to the lack of security measures taken to protect the website structure. This allows attackers to escalate their privileges and execute arbitrary code.
The vulnerability of the VMware Aria Operations for Logs network log analysis tool is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor, operating remotely, to perform certain operations from the perspective of a user administrating the syst...
CVE-2024-9500
A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by the Autodesk Installer could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to insecure privilege management...
The vulnerability of the Microsoft AutoUpdate (MAU) application for Mac, which manages privileges in a non-safe manner, allows a malicious individual to escalate their privileges.
The vulnerability of the Microsoft AutoUpdate MAU for Mac application related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to escalate their privileges...
PT-2025-1059 · Microsoft · Windows Installer +1
Name of the Vulnerable Software and Affected Versions: Windows Installer affected versions not specified Description: The issue is related to insecure privilege management in the Windows Installer component of Windows operating systems. It allows an attacker to elevate their privileges to the lev...
PT-2025-1242 · Microsoft · Autoupdate (Mau) For Mac
Name of the Vulnerable Software and Affected Versions: Microsoft AutoUpdate MAU for Mac affected versions not specified Description: The issue is related to insecure privilege management in Microsoft AutoUpdate MAU for Mac, which can allow an attacker to elevate their privileges. Recommendations:...
The vulnerability in the web interface for managing Zyxel network devices allows a perpetrator to escalate their privileges.
The vulnerability of the web interface for managing Zyxel network devices involves insecure management of privileges. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the level of an administrator and upload configuration files...
The vulnerability of the VCM software, a security tool from Fortinet for Linux systems, relates to insecure privilege management. This vulnerability allows an attacker to elevate their privileges to the root level.
The vulnerability of the VCM software, a security tool from Fortinet’s FortiClient for Linux, is related to insecure management of privileges. Exploiting this vulnerability allows an attacker, operating remotely, to elevate their privileges to the root level...
PT-2025-1012 · Sonicwall · Gen7 Sonicos Cloud Platform Nsv
Name of the Vulnerable Software and Affected Versions: Gen7 SonicOS Cloud platform NSv affected versions not specified Description: The issue is related to insecure privilege management in the configuration function of the SSH cloud platform. It allows a remote authenticated attacker with low...
The vulnerability of Imagination Technologies’ component in the Android operating system allows a hacker to increase their privileges and gain full access to the device.
The vulnerability of Imagination Technologies’ Android operating system component relates to insecure privilege management. Exploiting this vulnerability can allow attackers to enhance their privileges and gain full access to the device...
The vulnerability of the Microsoft Partner Center software lies in the insecure management of privileges, allowing attackers to escalate their privileges.
The vulnerability of the Microsoft Partner Center cloud platform is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...
Silicon Labs Z-Wave 700和Silicon Labs Z-Wave 800 安全漏洞
Silicon Labs Z-Wave 700 SiLabs Z-Wave 800 and Silicon Labs Z-Wave 800 SiLabs Z-Wave 800 are a series of chips from Silicon Labs, Inc. in the United States. A security vulnerability exists in Silicon Labs Z-Wave 700 and Silicon Labs Z-Wave 800 version v7.21.1, which stems from insecure privilege...
The vulnerability of the khugepaged component in the Linux operating system’s kernel allows a hacker to read and manipulate data.
The vulnerability of the khugepaged component in the Linux operating system’s kernel is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to read and manipulate data...
The vulnerability of the Session Recording component of software for virtualization and application delivery in Citrix Virtual Apps and Desktops (formerly XenApp and XenDesktop) allows a attacker to execute arbitrary code.
The vulnerability of the Session Recording component of the software for virtualizing and delivering Citrix Virtual Apps and Desktops formerly XenApp and XenDesktop is related to insecure management of privileges. Exploiting this vulnerability allows an attacker to elevate their privileges and...
CVE-2024-9500 Autodesk ADP Desktop SDK Privilege Escalation Vulnerability
A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by the Autodesk Installer could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to insecure privilege management...