Lucene search
K

1220 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/04/23 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-49867

Incorrect Privilege Assignment vulnerability in InspiryThemes RealHomes realhomes allows Privilege Escalation.This issue affects RealHomes: from n/a through = 4.4.0...

9.8CVSS5.2AI score0.00325EPSS
In wildExploits0References3
Snyk
Snyk
added 2026/04/20 12:32 p.m.3 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the memosaccesstoken function of the UpdateInstanceSetting component when manipulating the additionalStyle or additionalScript arguments. An attacker can gain unauthorized access to sensitive informatio...

6.5CVSS6.6AI score0.00252EPSS
Exploits0References2
OSV
OSV
added 2026/04/20 12:32 p.m.6 views

GHSA-GQP3-HFC3-8Q54 Memos has an Incorrect Privilege Assignment issue

A weakness has been identified in usememos memos up to 0.22.1. This affects the function memosaccesstoken of the file src/App.tsx of the component UpdateInstanceSetting. This manipulation of the argument additionalStyle/additionalScript causes improper authorization. The attack is possible to be...

6.3CVSS5.5AI score0.00252EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/04/13 7:23 p.m.3 views

CVE-2026-27102

Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.1.6 and versions 9.11.0.0 through 9.13.0.1, contains an incorrect privilege assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

7.8CVSS5.8AI score0.00091EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/13 5:4 a.m.4 views

CVE-2026-21011

Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock...

5.4CVSS5.8AI score0.00149EPSS
Exploits0References1
CNVD
CNVD
added 2026/04/10 12:0 a.m.3 views

Dell AppSync elevation of privilege vulnerability (CNVD-2026-17277)

Dell AppSync is a data replication management application from Dell USA. An elevation of privilege vulnerability exists in Dell AppSync version 4.6.0. The vulnerability stems from improper assignment of critical resource privileges and can be exploited by an attacker to cause elevation of privile...

7.3CVSS5.8AI score0.00127EPSS
Exploits0
EUVD
EUVD
added 2026/04/08 3:31 p.m.5 views

EUVD-2026-20447

Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.1.6 and versions 9.11.0.0 through 9.13.0.1, contains an incorrect privilege assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

6.6CVSS5.9AI score0.00091EPSS
Exploits0References2
NVD
NVD
added 2026/04/08 1:16 p.m.5 views

CVE-2026-27102

Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.1.6 and versions 9.11.0.0 through 9.13.0.1, contains an incorrect privilege assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

7.8CVSS0.00091EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 12:11 p.m.16 views

CVE-2026-27102

Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.1.6 and versions 9.11.0.0 through 9.13.0.1, contains an incorrect privilege assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

6.6CVSS0.00091EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.7 views

PT-2026-31299

Name of the Vulnerable Software and Affected Versions Dell PowerScale OneFS versions 9.5.0.0 through 9.10.1.6 and versions 9.11.0.0 through 9.13.0.1 Description Dell PowerScale OneFS contains an incorrect privilege assignment issue. A local attacker with low privileges may be able to elevate thei...

6.6CVSS5.7AI score0.00091EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.6 views

Dell AppSync 安全漏洞

Dell AppSync is a data replication management application from Dell USA. An elevation of privilege vulnerability exists in Dell AppSync version 4.6.0. The vulnerability stems from improper assignment of critical resource privileges and can be exploited by an attacker to cause elevation of privile...

7.3CVSS5.8AI score0.00127EPSS
Exploits0References1
Snyk
Snyk
added 2026/03/31 11:44 p.m.4 views

Incorrect Privilege Assignment

Overview github.com/filebrowser/filebrowser/v2/http is a web file browser. Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the signupHandler in File Browser. An attacker can gain unauthorized command execution capabilities by self-registering when server-side...

9.8CVSS6AI score0.00654EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/31 11:44 p.m.6 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the signupHandler in File Browser. An attacker can gain unauthorized command execution capabilities by self-registering when server-side execution is enabled and the default user template includes...

9.8CVSS6AI score0.00654EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/30 5:29 p.m.4 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment in the CapFQDN.DecodeFromBytes function of the BGP OPEN Message Handler. An attacker can bypass intended access controls by manipulating the domainNameLen argument remotely, potentially resulting in...

6.3CVSS5.9AI score0.00293EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/30 5:26 p.m.4 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment due to improper BGP header validation in the BGPHeader.DecodeFromBytes function. An attacker can modify BGP header data by sending specially crafted packets to the affected process. Remediation Upgrade...

6.3CVSS5.9AI score0.00287EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/30 5:26 p.m.3 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment due to improper BGP header validation in the BGPHeader.DecodeFromBytes function. An attacker can modify BGP header data by sending specially crafted packets to the affected process. Remediation Upgrade...

6.3CVSS5.9AI score0.00287EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/30 5:26 p.m.1 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment due to improper BGP header validation in the BGPHeader.DecodeFromBytes function. An attacker can modify BGP header data by sending specially crafted packets to the affected process. Remediation Upgrade...

6.3CVSS5.9AI score0.00287EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/26 5:5 p.m.6 views

CVE-2026-25334

Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.This issue affects Salon Booking System Pro: from n/a through 10.30.12...

8.1CVSS5.8AI score0.00264EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 5:3 p.m.4 views

CVE-2026-32530

Incorrect Privilege Assignment vulnerability in WPFunnels Creator LMS creatorlms allows Privilege Escalation.This issue affects Creator LMS: from n/a through = 1.1.18...

8.8CVSS5.8AI score0.00225EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 5:3 p.m.6 views

CVE-2026-32488

Incorrect Privilege Assignment vulnerability in wpeverest User Registration user-registration allows Privilege Escalation.This issue affects User Registration: from n/a through = 4.4.9...

8.1CVSS5.8AI score0.00345EPSS
Exploits1References1
Rows per page
Query Builder