Vulnerabilities > Improper Privilege Management

DATE CVE VULNERABILITY TITLE RISK
2020-04-21 CVE-2020-10787 Improper Privilege Management vulnerability in Vestacp Vesta Control Panel
An elevation of privilege in Vesta Control Panel through 0.9.8-26 allows an attacker to gain root system access from the admin account via v-change-user-password (aka the user password change script).
network
low complexity
vestacp CWE-269
critical
 9.0
9.0
2020-04-20 CVE-2017-18837 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
4.6
4.6
2020-04-20 CVE-2017-18830 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
4.6
4.6
2020-04-20 CVE-2017-18829 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
4.6
4.6
2020-04-20 CVE-2017-18826 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
4.6
4.6
2020-04-20 CVE-2017-18822 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
4.6
4.6
2020-04-20 CVE-2017-18838 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by privilege escalation.
local
low complexity
netgear CWE-269
4.6
4.6
2020-04-17 CVE-2020-0080 Improper Privilege Management vulnerability in Google Android 10.0
In onOpActiveChanged and related methods of AppOpsControllerImpl.java, there is a possible way to display an app overlaying other apps without the notification icon that it's overlaying.
network
google CWE-269
critical
 9.3
9.3
2020-04-17 CVE-2020-10947 Improper Privilege Management vulnerability in Sophos products
Mac Endpoint for Sophos Central before 9.9.6 and Mac Endpoint for Sophos Home before 2.2.6 allow Privilege Escalation.
network
low complexity
sophos CWE-269
6.5
6.5
2020-04-16 CVE-2020-4347 Improper Privilege Management vulnerability in IBM Infosphere Information Server 11.3/11.5/11.7
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could be subject to attacks based on privilege escalation due to inappropriate file permissions for files used by WebSphere Application Server Network Deployment.
network
low complexity
ibm CWE-269
7.5
7.5