Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-07 | CVE-2023-20194 | Improper Privilege Management vulnerability in Cisco Identity Services Engine A vulnerability in the ERS API of Cisco ISE could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system of an affected device. | 4.9 |
| 2023-09-06 | CVE-2023-41053 | Improper Privilege Management vulnerability in Redis Redis is an in-memory database that persists on disk. | 3.3 |
| 2023-09-06 | CVE-2020-10129 | Improper Privilege Management vulnerability in Searchblox SearchBlox before Version 9.2.1 is vulnerable to Privileged Escalation-Lower user is able to access Admin functionality. | 8.8 |
| 2023-09-06 | CVE-2023-30713 | Improper Privilege Management vulnerability in Samsung Android 11.0/12.0 Improper privilege management vulnerability in FolderLockNotifier in One UI Home prior to SMR Sep-2023 Release 1 allows local attackers to change some settings of the folder lock. | 5.5 |
| 2023-09-05 | CVE-2023-40918 | Improper Privilege Management vulnerability in Knowstreaming Project Knowstreaming 3.3.0 KnowStreaming 3.3.0 is vulnerable to Escalation of Privileges. | 8.8 |
| 2023-09-01 | CVE-2023-4697 | Improper Privilege Management vulnerability in Usememos Memos Improper Privilege Management in GitHub repository usememos/memos prior to 0.13.2. | 8.8 |
| 2023-08-31 | CVE-2023-31175 | Improper Privilege Management vulnerability in Selinc Sel-5037 SEL Grid Configurator An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator could allow an attacker to run system commands with the highest level privilege on the system. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5037 SEL Grid Configurator: before 4.5.0.20. | 9.8 |
| 2023-08-31 | CVE-2023-41743 | Improper Privilege Management vulnerability in Acronis Agent, Cyber Protect and Cyber Protect Home Office Local privilege escalation due to insecure driver communication port permissions. | 7.8 |
| 2023-08-31 | CVE-2022-45451 | Improper Privilege Management vulnerability in Acronis Agent, Cyber Protect and Cyber Protect Home Office Local privilege escalation due to insecure driver communication port permissions. | 7.8 |
| 2023-08-30 | CVE-2023-20266 | Improper Privilege Management vulnerability in Cisco products A vulnerability in Cisco Emergency Responder, Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unity Connection could allow an authenticated, remote attacker to elevate privileges to root on an affected device. This vulnerability exists because the application does not properly restrict the files that are being used for upgrades. | 7.2 |