Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/11/21 4:38 p.m.8 views

CVE-2025-62730

SOPlanning is vulnerable to Privilege Escalation in user management tab. Users with usermanageteam role are allowed to modify permissions of users. However, they are able to assign administrative permissions to any user including themselves. This allow a malicious authenticated attacker with this...

8.8CVSS7AI score0.00255EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/20 3:44 p.m.3 views

CVE-2025-62730 Privilege Escalation via Incorrect Authorization in SOPlanning

SOPlanning is vulnerable to Privilege Escalation in user management tab. Users with usermanageteam role are allowed to modify permissions of users. However, they are able to assign administrative permissions to any user including themselves. This allow a malicious authenticated attacker with this...

8.7CVSS6.2AI score0.00255EPSS
Exploits0References2
Huntr
Huntr
added 2023/06/28 6:36 p.m.7 views

Improper Authorization in add role function leads to privilege escalation

Description The application improperly performs user authorization, resulting in a user with the user management role being able to modify their own permissions or those of others. Proof of Concept Step1: The highest-level administrator or an administrator with the permission to create roles...

6.7AI score
Exploits0
CNVD
CNVD
added 2021/01/21 12:0 a.m.4 views

Cisco DNA Center Elevation of Privilege Vulnerability

Cisco DNA Center is the network management and command center for Cisco DNA. An elevation of privilege vulnerability exists in the user management role in Cisco DNA Center versions prior to 2.1.2.0. The vulnerability stems from improper execution of an action on a specified user role. An attacker...

8.8CVSS7.4AI score0.01404EPSS
Exploits0References1
Rows per page
Query Builder