Lucene search
K

89 matches found

Cvelist
Cvelist
added 2025/08/20 8:2 a.m.13 views

CVE-2025-54735 WordPress CubeWP Framework Plugin <= 1.1.24 - Privilege Escalation Vulnerability

Incorrect Privilege Assignment vulnerability in Imran Tauqeer CubeWP cubewp-framework allows Privilege Escalation.This issue affects CubeWP: from n/a through = 1.1.24...

8.8CVSS0.0034EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/16 3:26 p.m.5 views

CVE-2025-36613

SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access...

7.8CVSS7AI score0.00104EPSS
Exploits0References1
OSV
OSV
added 2025/08/14 3:15 p.m.2 views

CVE-2025-36613

SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access...

7.8CVSS5.8AI score0.00104EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 10:34 a.m.23 views

CVE-2025-54697

CVE-2025-54697 concerns Kadence WooCommerce Email Designer for WordPress (Kadence plugin). Connected sources confirm an Incorrect Privilege Assignment vulnerability that could enable privilege escalation in versions up to and including 1.5.16. No exploit details are provided in the documents. The...

7.2CVSS5.9AI score0.00376EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/24 12:0 a.m.2 views

TeamViewer Remote Management 安全漏洞

TeamViewer Remote Management is a remote management software from TeamViewer, Inc. A security vulnerability exists in TeamViewer Remote Management versions prior to 15.67, which stems from an improperly assigned privilege that results in arbitrary file deletion...

7CVSS7.8AI score0.00158EPSS
Exploits0References3
OSV
OSV
added 2025/05/28 1:15 p.m.5 views

CVE-2025-4493

Improper privilege assignment in PAM JIT privilege sets in Devolutions Server allows a PAM user to perform PAM JIT requests on unauthorized groups by exploiting a user interface issue. This issue affects the following versions : Devolutions Server 2025.1.3.0 through 2025.1.7.0 Devolutions Server...

6.5CVSS5.8AI score0.00311EPSS
Exploits0References1
OSV
OSV
added 2025/05/14 7:15 p.m.6 views

CVE-2025-0135

An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS devices enables a locally authenticated non administrative user to disable the app. The GlobalProtect app on Windows, Linux, iOS, Android, Chrome OS and GlobalProtect UWP app are not affected...

3.3CVSS5.8AI score0.00115EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/09 12:0 a.m.3 views

Inaba Denki Sangyo Wi-Fi AP UNIT 安全漏洞

Inaba Denki Sangyo Wi-Fi AP UNIT is a Wi-Fi AP unit from Inaba Denki Sangyo Inaba Denki Sangyo, a Japanese company. A security vulnerability exists in Inaba Denki Sangyo Wi-Fi AP UNIT v2.0.03P and prior versions, which stems from an improperly assigned privilege that could lead to tampered settin...

4.3CVSS9.1AI score0.00335EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/02/04 12:0 a.m.5 views

IBM Security Verify Access 安全漏洞

IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. The service enables secure and simple access to platforms such as web, mobile, IoT and cloud technologies through the use of risk-based access, single sign-on, integrated acce...

6.7CVSS6.6AI score0.00134EPSS
Exploits0References1
OSV
OSV
added 2025/01/09 7:15 p.m.2 views

CVE-2024-13248

Incorrect Privilege Assignment vulnerability in Drupal Private content allows Target Influence via Framing.This issue affects Private content: from 0.0.0 before 2.1.0...

5.5CVSS5.8AI score0.00182EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.5 views

PT-2024-32444 · Huawei · Honor

Name of the Vulnerable Software and Affected Versions: Honor products affected versions not specified Description: The issue is related to an incorrect privilege assignment, which could lead to device service exceptions if successfully exploited. Recommendations: At the moment, there is no...

5.5CVSS6.9AI score0.00116EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/12/04 12:0 a.m.3 views

Devolutions Server 产品安全漏洞

Devolutions Server is an application from Devolutions Canada Inc. which provides a full-featured shared account and password management solution. A security vulnerability exists in Devolutions Server version 2024.3.8.0 and prior versions, which stems from an incorrect assignment of privileges in...

5CVSS6.8AI score0.00268EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/18 12:0 a.m.4 views

WAGO多款产品 安全漏洞

WAGO PFC100 and others are products of WAGO, Germany.WAGO PFC100 is a programmable logic controller PLC.WAGO CC100 0751-9x01 is a compact controller.WAGO Edge Controller 0752-8303/8000-0002 is a controller. A security vulnerability exists in a number of WAGO products. The vulnerability stems from...

5.7CVSS6.8AI score0.00339EPSS
Exploits0References2
OSV
OSV
added 2024/11/14 1:15 p.m.5 views

AZL-53209 CVE-2024-10978 affecting package postgresql for versions less than 16.5-1

Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or change different rows from those intended. An attack requires the application to use SET ROLE, SET SESSION AUTHORIZATION, or an equivalent feature. The problem arises when an application query uses...

4.2CVSS7.2AI score0.00705EPSS
Exploits0References1
OSV
OSV
added 2024/11/14 1:15 p.m.3 views

DEBIAN-CVE-2024-10978

Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or change different rows from those intended. An attack requires the application to use SET ROLE, SET SESSION AUTHORIZATION, or an equivalent feature. The problem arises when an application query uses...

4.2CVSS6.3AI score0.00705EPSS
Exploits0References1
OSV
OSV
added 2024/11/14 1:15 p.m.1 views

UBUNTU-CVE-2024-10978

Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or change different rows from those intended. An attack requires the application to use SET ROLE, SET SESSION AUTHORIZATION, or an equivalent feature. The problem arises when an application query uses...

4.2CVSS6.7AI score0.00705EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/09/07 12:0 a.m.5 views

Veeam ONE 安全漏洞

Veeam ONE is a suite of IT monitoring and reporting tools from Veeam USA. The product supports features such as backup monitoring, operational status monitoring of virtual and physical environments. A security vulnerability exists in Veeam ONE version 12.1.0.3208 and previous versions 12, which...

7.5CVSS7.5AI score0.00283EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/05 12:0 a.m.8 views

Zexeron ZWX-2000CSW2-HN 安全漏洞

The Zexeron ZWX-2000CSW2-HN is a high-speed coaxial modem from Zexeron Japan. A security vulnerability exists in the Zexeron ZWX-2000CSW2-HN prior to version 0.3.15, which stems from the presence of incorrect privilege assignments for critical resource issues, which could allow a network-adjacent...

8CVSS7.7AI score0.00238EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.5 views

Siemens RUGGEDCOM 安全漏洞

Siemens RuggedCom ROS is an operating system from Siemens, Germany, used in the RuggedCom series of switches. An incorrect privilege assignment vulnerability exists in Siemens RUGGEDCOM ROS, which can be exploited by an attacker to create a remote shell for an affected system...

7.5CVSS6.9AI score0.00344EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.8 views

Siemens SINEMA Remote Connect Server 安全漏洞

Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, Germany. The platform is used to remotely access, maintain, control and diagnose the underlying network. Siemens SINEMA Remote Connect Server suffers from an incorrect assignment of critical resource...

5.3CVSS6.6AI score0.00259EPSS
Exploits0References2
Rows per page
Query Builder