CVE-2025-25023

IBM Guardium Data Protection versions 11.4, 11.5, 12.0 and 12.1 are affected by CVE-2025-25023 due to incorrect privilege assignment that could allow a privileged user to read arbitrary files. The vulnerability is described as an incorrect privilege assignment (CWE-266) with a CVSS v3.1 base scor...

CVE-2025-25023 IBM Security Guardium information disclosure

IBM Security Guardium 11.4 and 12.1 could allow a privileged user to read any file on the system due to incorrect privilege assignment...

CVE-2025-23407

Incorrect privilege assignment vulnerability in the WEB UI the setting page exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote attacker who can log in to the product may alter the settings without appropriate privileges...

CVE-2025-23407

Incorrect privilege assignment vulnerability in the WEB UI the setting page exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote attacker who can log in to the product may alter the settings without appropriate privileges...

CVE-2025-23407

Incorrect privilege assignment vulnerability in the WEB UI the setting page exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote attacker who can log in to the product may alter the settings without appropriate privileges...

CVE-2025-23407

CVE-2025-23407 describes an incorrect privilege assignment in the WEB UI (settings page) affecting the Inaba Denki Sangyo Wi‑Fi AP UNIT AC‑WPS‑11ac series. A remote attacker who can log in to the product could alter settings without proper privileges. The CVE is rated CVSS v3.1 base score 4.3 (Me...

WordPress plugin Checkout Mestres WP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2025-15696 · Ibm · Ibm Security Guardium

Name of the Vulnerable Software and Affected Versions: IBM Security Guardium versions 11.4 through 12.1 Description: The issue allows a privileged user to read any file on the system due to incorrect privilege assignment. Recommendations: For versions 11.4 through 12.1, update to a version that...

CVE-2025-31420

Incorrect Privilege Assignment vulnerability in Tomdever wpForo Forum wpforo allows Privilege Escalation.This issue affects wpForo Forum: from n/a through = 2.4.2...

CVE-2025-31420 WordPress wpForo Forum plugin <= 2.4.2 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in Tomdever wpForo Forum wpforo allows Privilege Escalation.This issue affects wpForo Forum: from n/a through = 2.4.2...

CVE-2025-31560

Incorrect Privilege Assignment vulnerability in Dimitri Grassi Salon booking system salon-booking-system allows Privilege Escalation.This issue affects Salon booking system: from n/a through 10.15...

CVE-2025-31560

Incorrect Privilege Assignment vulnerability in Dimitri Grassi Salon booking system allows Privilege Escalation. This issue affects Salon booking system: from n/a through 10.11...

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment that allows a Restricted Administrator user to change the password of an Administrator account and escalate privileges by taking over the Administrator account. Workaround This vulnerability can be avoided...

PT-2025-14426 · Unknown · Dimitri Grassi Salon Booking System

Name of the Vulnerable Software and Affected Versions: Dimitri Grassi Salon booking system versions from n/a through 10.11 Description: The issue is related to an Incorrect Privilege Assignment vulnerability, which allows Privilege Escalation in the Dimitri Grassi Salon booking system...

PT-2025-14372 · Rancher · Rancher

Name of the Vulnerable Software and Affected Versions: Rancher versions 2.8.0 through 2.8.13 Rancher versions 2.9.0 through 2.9.7 Rancher versions 2.10.0 through 2.10.3 Description: A vulnerability in SUSE Rancher allows a Restricted Administrator to change the password of Administrators and take...

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the runsc process, which has "root-like" permissions. An attacker can expose files on the underlying filesystem by escalating privileges before a project is forked. Remediation Upgrade...

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the runsc process, which has "root-like" permissions. An attacker can expose files on the underlying filesystem by escalating privileges before a project is forked. Remediation Upgrade...

The vulnerability of Nomad application orchestrators, related to incorrect privilege assignment, allows attackers to gain access to confidential information.

The vulnerability of Nomad application orchestrators is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to confidential information...

Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities

Summary IBM QRadar SIEM includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. These have been addressed in the update. Vulnerability Details CVEID:CVE-2024-10977 DESCRIPTION: PostgreSQL could provide weaker than expected security,...

CVE-2024-49561

Dell SmartFabric OS10 Software, versions 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...