Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-28 | CVE-2019-15720 | Improper Privilege Management vulnerability in Cloudberrylab Backup 6.1.2.34 CloudBerry Backup v6.1.2.34 allows local privilege escalation via a Pre or Post backup action. | 7.8 |
| 2019-08-26 | CVE-2019-4448 | Improper Privilege Management vulnerability in IBM DB2 High Performance Unload Load 6.1/6.1.0.1/6.1.0.2 IBM DB2 High Performance Unload load for LUW 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and 6.1.0.1 IF2 db2hpum and db2hpum_debug binaries are setuid root and have built-in options that allow an low privileged user the ability to load arbitrary db2 libraries from a privileged context. | 7.8 |
| 2019-08-21 | CVE-2019-11551 | Improper Privilege Management vulnerability in Code42 products In Code42 Enterprise and Crashplan for Small Business through Client version 6.9.1, an attacker can craft a restore request to restore a file through the Code42 app to a location they do not have privileges to write. | 5.5 |
| 2019-08-20 | CVE-2019-11521 | Improper Privilege Management vulnerability in Open-Xchange Appsuite 7.10.1 OX App Suite 7.10.1 allows Content Spoofing. | 8.1 |
| 2019-08-20 | CVE-2019-12889 | Improper Privilege Management vulnerability in Sailpoint Desktop Password Reset 7.2 An unauthenticated privilege escalation exists in SailPoint Desktop Password Reset 7.2. | 7.0 |
| 2019-08-12 | CVE-2019-12618 | Improper Privilege Management vulnerability in Hashicorp Nomad 0.9.0/0.9.1 HashiCorp Nomad 0.9.0 through 0.9.1 has Incorrect Access Control via the exec driver. | 9.8 |
| 2019-07-24 | CVE-2019-1010178 | Improper Privilege Management vulnerability in Modx Fred 1.0.0 Fred MODX Revolution < 1.0.0-beta5 is affected by: Incorrect Access Control - CWE-648. | 9.8 |
| 2019-07-19 | CVE-2019-11553 | Improper Privilege Management vulnerability in Code42 In Code42 for Enterprise through 6.8.4, an administrator without web restore permission but with the ability to manage users in an organization can impersonate a user with web restore permission. | 8.8 |
| 2019-07-12 | CVE-2019-12731 | Improper Privilege Management vulnerability in Mikogo The Windows versions of Snapview Mikogo, versions before 5.10.2 are affected by insecure implementations which allow local attackers to escalate privileges. | 7.8 |
| 2019-07-01 | CVE-2019-7278 | Improper Privilege Management vulnerability in Optergy Enterprise and Proton Optergy Proton/Enterprise devices have an Unauthenticated SMS Sending Service. | 6.5 |