Vulnerabilities > Improper Privilege Management

DATE CVE VULNERABILITY TITLE RISK
2021-01-13 CVE-2020-9209 Improper Privilege Management vulnerability in Huawei Smc2.0 Firmware
There is a privilege escalation vulnerability in SMC2.0 product.
local
low complexity
huawei CWE-269
4.6
2021-01-13 CVE-2021-1258 Improper Privilege Management vulnerability in Cisco Anyconnect Secure Mobility Client
A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operating system (OS) of an affected device.
local
low complexity
cisco CWE-269
2.1
2021-01-13 CVE-2021-1224 Improper Privilege Management vulnerability in multiple products
Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP.
network
low complexity
cisco snort CWE-269
5.0
2021-01-13 CVE-2021-1223 Improper Privilege Management vulnerability in multiple products
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP.
network
low complexity
cisco snort CWE-269
5.0
2021-01-12 CVE-2021-3134 Improper Privilege Management vulnerability in Mubu 2.2.1
Mubu 2.2.1 allows local users to gain privileges to execute commands, aka CNVD-2020-68878.
local
low complexity
mubu CWE-269
4.6
2021-01-12 CVE-2021-1719 Improper Privilege Management vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server
Microsoft SharePoint Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1712.
network
microsoft CWE-269
6.0
2021-01-12 CVE-2021-1712 Improper Privilege Management vulnerability in Microsoft products
Microsoft SharePoint Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1719.
network
microsoft CWE-269
6.0
2021-01-12 CVE-2021-1709 Improper Privilege Management vulnerability in Microsoft products
Windows Win32k Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.2
2021-01-12 CVE-2021-1706 Improper Privilege Management vulnerability in Microsoft products
Windows LUAFV Elevation of Privilege Vulnerability
network
low complexity
microsoft CWE-269
critical
9.0
2021-01-12 CVE-2021-1704 Improper Privilege Management vulnerability in Microsoft products
Windows Hyper-V Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.2