73 matches found
EUVD-2026-34796
Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files...
CVE-2026-21017
Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files...
CVE-2026-21017
Technical details (affected product/component, root cause, impact, or fix) are not publicly available in the provided documents. Monitor for updates from official advisories.
CVE-2026-21017
Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files...
PT-2026-46914
Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files...
ROS-20260605-73-0094
The vulnerability in Firefox is related to insecure handling of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
ROS-20260605-73-0087
The vulnerability in Firefox is related to insecure handling of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
ROS-20260605-73-0101
The vulnerability in Firefox is related to insecure handling of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
CVE-2026-10217
A flaw has been found in nextlevelbuilder GoClaw up to 3.11.3. The impacted element is the function handleSave of the file internal/http/ttsconfig.go of the component RoleAdmin Gateway. This manipulation causes improper privilege management. Remote exploitation of the attack is possible. The...
PT-2026-41254
Improper handling of insufficient privileges in the AMD Secure Processor ASP could allow an attacker to provide an input value to a function without sufficient privileges and successfully write data, potentially resulting in loss of integrity of availability...
Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : Apache HTTP Server vulnerabilities (USN-8239-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8239-1 advisory. Bartlomiej Dmitruk and Stanislaw Strzalkowski discovered that Apache HTTP Server incorrectly handled certain memory...
CVE-2025-69689
The Fan Control application V251 contains an improper privilege handling vulnerability in its Open File Dialog. The dialog processes user-supplied paths with elevated permissions, which can be exploited by a local attacker to perform actions with administrator-level privileges...
EUVD-2025-209578
The Fan Control application V251 contains an improper privilege handling vulnerability in its Open File Dialog. The dialog processes user-supplied paths with elevated permissions, which can be exploited by a local attacker to perform actions with administrator-level privileges...
CVE-2025-69689
The Fan Control application V251 contains an improper privilege handling vulnerability in its Open File Dialog. The dialog processes user-supplied paths with elevated permissions, which can be exploited by a local attacker to perform actions with administrator-level privileges...
CVE-2025-12485
Improper privilege management during pre-MFA cookie handling in Devolutions Server allows a low-privileged authenticated user to impersonate another account by replaying the pre-MFA cookie.This does not bypass the target account MFA verification step. This issue affects the following versions :...
EUVD-1999-0093
Malware in sbrugna...
EUVD-2019-9894
Malware in sbrugna...
ROS-20250923-06
A vulnerability in the Apache Cassandra distributed database management system is related to improper privilege handling. Exploitation of the vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and availability of protected information. impact the...
WAGO Coupler Series 安全漏洞
WAGO Coupler Series is a series of Ethernet interface modules from WAGO Japan. A security vulnerability exists in the WAGO Coupler Series that stems from improper handling of privileges, which could result in elevated privileges and firmware modifications...
CVE-2023-20516
CVE-2023-20516 involves improper handling of insufficiency privileges in the ASP, potentially allowing a privileged attacker to modify Translation Map Registers (TMRs) and affecting confidentiality or integrity. The provided sources indicate a network-based, high-privilege requirement with no use...