Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-27 | CVE-2020-12138 | Improper Privilege Management vulnerability in AMD Atillk64 5.11.9.0 AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. | 9.0 |
| 2020-04-24 | CVE-2020-6823 | Improper Privilege Management vulnerability in Mozilla Firefox A malicious extension could have called <code>browser.identity.launchWebAuthFlow</code>, controlling the redirect_uri, and through the Promise returned, obtain the Auth code and gain access to the user's account at the service provider. | 7.5 |
| 2020-04-23 | CVE-2020-4202 | Improper Privilege Management vulnerability in IBM Urbancode Deploy IBM UrbanCode Deploy (UCD) 7.0.3.0 and 7.0.4.0 could allow an authenticated user to impersonate another user if the server is configured to enable Distributed Front End (DFE). | 6.0 |
| 2020-04-22 | CVE-2018-21124 | Improper Privilege Management vulnerability in Netgear Wac505 Firmware and Wac510 Firmware NETGEAR WAC510 devices before 5.0.0.17 are affected by privilege escalation. | 5.8 |
| 2020-04-22 | CVE-2020-8474 | Improper Privilege Management vulnerability in ABB 800Xa Base System 6.0.0 Weak Registry permissions in ABB System 800xA Base allow low privileged users to read and modify registry settings related to control system functionality, allowing an authenticated attacker to cause system functions to stop or malfunction. | 4.6 |
| 2020-04-21 | CVE-2020-10787 | Improper Privilege Management vulnerability in Vestacp Vesta Control Panel An elevation of privilege in Vesta Control Panel through 0.9.8-26 allows an attacker to gain root system access from the admin account via v-change-user-password (aka the user password change script). | 9.0 |
| 2020-04-20 | CVE-2017-18837 | Improper Privilege Management vulnerability in Netgear products Certain NETGEAR devices are affected by vertical privilege escalation. | 4.6 |
| 2020-04-20 | CVE-2017-18830 | Improper Privilege Management vulnerability in Netgear products Certain NETGEAR devices are affected by vertical privilege escalation. | 4.6 |
| 2020-04-20 | CVE-2017-18829 | Improper Privilege Management vulnerability in Netgear products Certain NETGEAR devices are affected by vertical privilege escalation. | 4.6 |
| 2020-04-20 | CVE-2017-18826 | Improper Privilege Management vulnerability in Netgear products Certain NETGEAR devices are affected by vertical privilege escalation. | 4.6 |