Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-15 | CVE-2020-3250 | Improper Privilege Management vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 7.5 |
| 2020-04-15 | CVE-2020-3243 | Improper Privilege Management vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 7.5 |
| 2020-04-15 | CVE-2020-11666 | Improper Privilege Management vulnerability in Broadcom CA API Developer Portal CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows malicious users to elevate privileges. | 6.5 |
| 2020-04-15 | CVE-2020-11661 | Improper Privilege Management vulnerability in Broadcom CA API Developer Portal CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to view and edit user data. | 5.5 |
| 2020-04-15 | CVE-2020-11799 | Improper Privilege Management vulnerability in Z-Cron 5.6 Z-Cron 5.6 Build 04 allows an unprivileged attacker to elevate privileges by modifying a privileged user's task. | 7.5 |
| 2020-04-15 | CVE-2019-12522 | Improper Privilege Management vulnerability in Squid-Cache Squid An issue was discovered in Squid through 4.7. | 4.4 |
| 2020-04-15 | CVE-2020-6992 | Improper Privilege Management vulnerability in GE Cimplicity A local privilege escalation vulnerability has been identified in the GE Digital CIMPLICITY HMI/SCADA product v10.0 and prior. | 4.6 |
| 2020-04-15 | CVE-2020-0600 | Improper Privilege Management vulnerability in Intel products Improper buffer restrictions in firmware for some Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access. | 4.6 |
| 2020-04-15 | CVE-2020-0578 | Improper Privilege Management vulnerability in Intel Compute Module Mfs2600Ki Firmware Improper conditions check for Intel(R) Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. | 5.8 |
| 2020-04-15 | CVE-2020-0577 | Improper Privilege Management vulnerability in Intel Compute Module Mfs2600Ki Firmware Insufficient control flow for Intel(R) Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. | 5.8 |