CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2025/04/28 2:28 p.m.•10 views

CVE-2025-23375

7.8CVSS7.5AI score0.00059EPSS

CVE•added 2025/04/28 2:28 p.m.•53 views

CVE-2025-23375

CVE-2025-23375 affects Dell PowerProtect Data Manager Reporting (version 19.17). The root cause is Incorrect Use of Privileged APIs, enabling a low-privilege attacker with local access to potentially achieve Elevation of Privileges. Exploitation details are not provided in the connected documents...

7.8CVSS6.9AI score0.00059EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/09/04 5:32 a.m.•18 views

CVE-2024-34655

Incorrect use of privileged API in UniversalCredentialManager prior to SMR Sep-2024 Release 1 allows local attackers to access privileged API related to UniversalCredentialManager...

6.2CVSS6.6AI score0.00089EPSS

OSV•added 2024/08/21 4:4 p.m.•11 views

GO-2022-1236 usememos/memos makes Incorrect Use of Privileged APIs in github.com/usememos/memos

usememos/memos makes Incorrect Use of Privileged APIs in github.com/usememos/memos...

8.1CVSS8.1AI score0.0018EPSS

NVD•added 2024/06/04 7:15 a.m.•9 views

CVE-2024-20883

Incorrect use of privileged API vulnerability in registerBatteryStatsCallback in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local attackers to use privileged API...

7.8CVSS6.1AI score0.00163EPSS

Cvelist•added 2024/06/04 6:42 a.m.•14 views

CVE-2024-20884

Incorrect use of privileged API vulnerability in getSemBatteryUsageStats in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local attackers to use privileged API...

6.2CVSS6.1AI score0.00171EPSS

Cvelist•added 2024/06/04 6:42 a.m.•14 views

CVE-2024-20883

Incorrect use of privileged API vulnerability in registerBatteryStatsCallback in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local attackers to use privileged API...

6.2CVSS6.1AI score0.00163EPSS

CVE•added 2022/12/28 12:0 a.m.•56 views

CVE-2022-4805

CVE-2022-4805 affects usememos/memos prior to 0.9.1. The root cause is incorrect use of privileged APIs, enabling a user to archive private memos, delete any shortcut, and edit shortcuts from other users via the API. Impact is unauthorized modification/access of sensitive data as described across...

7.3CVSS5AI score0.00166EPSS

Exploits1References2Affected Software1

OSV•added 2022/12/28 12:0 a.m.•12 views

CVE-2022-4805 Incorrect Use of Privileged APIs in usememos/memos

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1...

7.3CVSS6.2AI score0.00166EPSS

OSV•added 2022/12/28 12:0 a.m.•11 views

CVE-2022-4796 Incorrect Use of Privileged APIs in usememos/memos

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1...

8.1CVSS8.1AI score0.0018EPSS

Cvelist•added 2022/12/28 12:0 a.m.•15 views

CVE-2022-4796 Incorrect Use of Privileged APIs in usememos/memos

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1...

8.1CVSS8.4AI score0.0018EPSS

Cvelist•added 2022/12/28 12:0 a.m.•14 views

CVE-2022-4805 Incorrect Use of Privileged APIs in usememos/memos

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1...

7.3CVSS5AI score0.00166EPSS

NVD•added 2022/12/23 12:15 p.m.•10 views

CVE-2022-4687

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0...

8.1CVSS0.00278EPSS

CVE•added 2022/06/20 4:0 a.m.•2158 views

CVE-2022-2023

CVE-2022-2023 concerns polonel/trudesk before 1.2.4 due to incorrect use of privileged APIs. Affected: polonel/trudesk, prior to 1.2.4. Root cause: improper handling of privileged APIs within the GitHub repo. Impact (as per sources): high severity with network attack vector and partial confidenti...

10CVSS9.7AI score0.00377EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/06/20 4:0 a.m.•17 views

CVE-2022-2023 Incorrect Use of Privileged APIs in polonel/trudesk

Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk prior to 1.2.4...

10CVSS9.8AI score0.00377EPSS

OSV•added 2022/06/20 4:0 a.m.•14 views

CVE-2022-2023 Incorrect Use of Privileged APIs in polonel/trudesk

Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk prior to 1.2.4...

10CVSS9.4AI score0.00377EPSS

Cvelist•added 2022/04/08 6:55 p.m.•18 views

CVE-2022-24821 Incorrect Use of Privileged APIs in org.xwiki.platform.skin.skinx

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Simple users can create global SSX/JSX without specific rights: in theory only users with Programming Rights should be allowed to create SSX or JSX that are executed everywhere on a wiki. But ...

6.8CVSS8.2AI score0.00699EPSS