Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-08 | CVE-2019-18623 | Improper Privilege Management vulnerability in Energycap Escalation of privileges in EnergyCAP 7 through 7.5.6 allows an attacker to access data. | 9.8 |
| 2019-11-06 | CVE-2006-4243 | Improper Privilege Management vulnerability in Linux-Vserver 1.9.0 linux vserver 2.6 before 2.6.17 suffers from privilege escalation in remount code. | 9.8 |
| 2019-11-04 | CVE-2013-4251 | Improper Privilege Management vulnerability in multiple products The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. | 7.8 |
| 2019-10-31 | CVE-2013-2012 | Improper Privilege Management vulnerability in multiple products autojump before 21.5.8 allows local users to gain privileges via a Trojan horse custom_install directory in the current working directory. | 7.3 |
| 2019-10-31 | CVE-2019-18365 | Improper Privilege Management vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2019.1.4, reverse tabnabbing was possible on several pages. | 4.3 |
| 2019-10-31 | CVE-2019-18425 | Improper Privilege Management vulnerability in multiple products An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. | 9.8 |
| 2019-10-29 | CVE-2018-18931 | Improper Privilege Management vulnerability in Trms Carousel Digital Signage 7.0.4.104 An issue was discovered in the Tightrope Media Carousel digital signage product 7.0.4.104. | 8.8 |
| 2019-10-29 | CVE-2019-4546 | Improper Privilege Management vulnerability in IBM products After installing the IBM Maximo Health- Safety and Environment Manager 7.6.1, a user is granted additional privileges that they are not normally allowed to access. | 8.8 |
| 2019-10-28 | CVE-2019-16897 | Improper Privilege Management vulnerability in K7Computing products In K7 Antivirus Premium 16.0.xxx through 16.0.0120; K7 Total Security 16.0.xxx through 16.0.0120; and K7 Ultimate Security 16.0.xxx through 16.0.0120, the module K7TSHlpr.dll improperly validates the administrative privileges of the user, allowing arbitrary registry writes in the K7AVOptn.dll module to facilitate escalation of privileges via inter-process communication with a service process. | 9.8 |
| 2019-10-21 | CVE-2019-10716 | Improper Privilege Management vulnerability in Verodin Director 3.5.3.1 An Information Disclosure issue in Verodin Director 3.5.3.1 and earlier reveals usernames and passwords of integrated security technologies via a /integrations.json JSON REST API request. | 7.7 |