Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-13 | CVE-2017-0358 | Improper Privilege Management vulnerability in multiple products Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. | 7.8 |
| 2018-04-03 | CVE-2017-5703 | Improper Privilege Management vulnerability in Intel products Configuration of SPI Flash in platforms based on multiple Intel platforms allow a local attacker to alter the behavior of the SPI flash potentially leading to a Denial of Service. | 6.0 |
| 2018-03-23 | CVE-2018-1000141 | Improper Privilege Management vulnerability in I-Librarian I Librarian I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access (read, write and delete) to project discussions. | 9.1 |
| 2018-03-22 | CVE-2017-0935 | Improper Privilege Management vulnerability in UI Edgeos 1.9.1/1.9.1.1 Ubiquiti Networks EdgeOS version 1.9.1.1 and prior suffer from an Improper Privilege Management vulnerability due to the lack of protection of the file system leading to sensitive information being exposed. | 8.8 |
| 2018-03-22 | CVE-2017-0934 | Improper Privilege Management vulnerability in Ubnt Edgeos Ubiquiti Networks EdgeOS version 1.9.1 and prior suffer from an Improper Privilege Management vulnerability due to the lack of protection of the file system leading to sensitive information being exposed. | 8.8 |
| 2018-03-22 | CVE-2017-0932 | Improper Privilege Management vulnerability in Ubnt Edgeos Ubiquiti Networks EdgeOS version 1.9.1.1 and prior suffer from an Improper Privilege Management vulnerability due to the lack of validation on the input of the Feature functionality. | 8.8 |
| 2018-03-20 | CVE-2017-5736 | Improper Privilege Management vulnerability in Intel Software Guard Extensions Platform Software Component An elevation of privilege in Intel Software Guard Extensions Platform Software Component before 1.9.105.42329 allows a local attacker to execute arbitrary code as administrator. | 8.8 |
| 2018-03-20 | CVE-2017-8187 | Improper Privilege Management vulnerability in Huawei Fusionsphere Openstack Firmware V100R006C00Spc102(Nfv) Huawei FusionSphere OpenStack V100R006C00SPC102(NFV) has a privilege escalation vulnerability. | 7.2 |
| 2018-03-20 | CVE-2018-4844 | Improper Privilege Management vulnerability in Siemens Simatic Wincc OA UI A vulnerability has been identified in SIMATIC WinCC OA UI for Android (All versions < V3.15.10), SIMATIC WinCC OA UI for iOS (All versions < V3.15.10). | 6.7 |
| 2018-03-16 | CVE-2018-1000133 | Improper Privilege Management vulnerability in Secluded Trident 1.4.6 Pitchfork version 1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident Pitchfork components that can result in A standard unprivileged user could gain system administrator permissions within the web portal.. | 7.5 |