Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-10 | CVE-2023-30680 | Improper Privilege Management vulnerability in Samsung Android 12.0/13.0 Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows code execution with privilege. | 7.8 |
| 2023-08-09 | CVE-2023-37859 | Improper Privilege Management vulnerability in Phoenixcontact products In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 the SNMP daemon is running with root privileges allowing a remote attacker with knowledge of the SNMPv2 r/w community string to execute system commands as root. | 7.2 |
| 2023-08-08 | CVE-2023-39211 | Improper Privilege Management vulnerability in Zoom Rooms and Zoom Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access. | 7.8 |
| 2023-08-08 | CVE-2023-4009 | Improper Privilege Management vulnerability in Mongodb OPS Manager Server In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege escalation. | 7.2 |
| 2023-08-07 | CVE-2023-39520 | Improper Privilege Management vulnerability in Cryptomator Cryptomator encrypts data being stored on cloud infrastructure. | 7.8 |
| 2023-08-02 | CVE-2023-31432 | Improper Privilege Management vulnerability in Broadcom Brocade Fabric Operating System Through manipulation of passwords or other variables, using commands such as portcfgupload, configupload, license, myid, a non-privileged user could obtain root privileges in Brocade Fabric OS versions before Brocade Fabric OS v9.1.1c and v9.2.0. | 7.8 |
| 2023-07-25 | CVE-2023-37907 | Improper Privilege Management vulnerability in Cryptomator Cryptomator is data encryption software for users who store their files in the cloud. | 7.8 |
| 2023-07-14 | CVE-2023-3513 | Improper Privilege Management vulnerability in Razer Central Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral <=7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and triggering an insecure .NET deserialization. | 7.8 |
| 2023-07-14 | CVE-2023-3514 | Improper Privilege Management vulnerability in Razer Central Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral <=7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and calling "AddModule" or "UninstallModules" command to execute arbitrary executable file. | 7.8 |
| 2023-07-10 | CVE-2021-42082 | Improper Privilege Management vulnerability in Osnexus Quantastor 4.3.0 Local users are able to execute scripts under root privileges. | 7.8 |