Vulnerabilities > Execution with Unnecessary Privileges

DATE	CVE	VULNERABILITY TITLE	RISK
2025-05-17	CVE-2025-33103	IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 product IBM TCP/IP Connectivity Utilities for i contains a privilege escalation vulnerability. network high complexity CWE-250	8.5
2025-04-22	CVE-2025-1951	IBM Hardware Management Console - Power Systems V10.2.1030.0 and V10.3.1050.0 could allow a local user to execute commands as a privileged user due to execution of commands with unnecessary privileges. local low complexity CWE-250	8.4
2025-02-06	CVE-2024-49814	IBM Security Verify Access Appliance 10.0.0 through 10.0.3 could allow a locally authenticated user to increase their privileges due to execution with unnecessary privileges. local low complexity CWE-250	7.8
2025-02-05	CVE-2025-20185	A vulnerability in the implementation of the remote access functionality of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, local attacker to elevate privileges to root. local low complexity CWE-250	3.4
2025-01-29	CVE-2023-37412	Execution with Unnecessary Privileges vulnerability in IBM Aspera Faspex IBM Aspera Faspex 5.0.0 through 5.0.10 could allow a privileged user to make system changes without proper access controls. network low complexity ibm CWE-250	4.9
2024-12-14	CVE-2024-31891	IBM Storage Scale GUI 5.1.9.0 through 5.1.9.6 and 5.2.0.0 through 5.2.1.1 contains a local privilege escalation vulnerability. local low complexity CWE-250	7.8