Vulnerabilities > Improper Privilege Management
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-03-27 | CVE-2015-8534 | Improper Privilege Management vulnerability in Lenovo Solution Center MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.2 |
2020-03-27 | CVE-2015-7334 | Improper Privilege Management vulnerability in Lenovo System Update 5.06.0027/5.06.0043/5.07.0008 MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.2 |
2020-03-27 | CVE-2015-7333 | Improper Privilege Management vulnerability in Lenovo System Update 5.06.0027/5.06.0043/5.07.0008 MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.2 |
2020-03-26 | CVE-2020-4276 | Improper Privilege Management vulnerability in IBM Websphere Application Server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional is vulnerable to a privilege escalation vulnerability when using token-based authentication in an admin request over the SOAP connector. | 6.0 |
2020-03-25 | CVE-2020-10649 | Improper Privilege Management vulnerability in Asus Device Activation DevActSvc.exe in ASUS Device Activation before 1.0.7.0 for Windows 10 notebooks and PCs could lead to unsigned code execution with no additional restrictions when a user puts an application at a particular path with a particular file name. | 7.2 |
2020-03-23 | CVE-2020-8873 | Improper Privilege Management vulnerability in Parallels Desktop This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. | 4.6 |
2020-03-23 | CVE-2020-10793 | Improper Privilege Management vulnerability in Codeigniter CodeIgniter through 4.0.0 allows remote attackers to gain privileges via a modified Email ID to the "Select Role of the User" page. | 8.8 |
2020-03-20 | CVE-2019-16071 | Improper Privilege Management vulnerability in Netsas Enigma NMS 65.0.0 Enigma NMS 65.0.0 and prior allows administrative users to create low-privileged accounts that do not have the ability to modify any settings in the system, only view the components. | 6.5 |
2020-03-19 | CVE-2020-3265 | Improper Privilege Management vulnerability in Cisco Sd-Wan Firmware A vulnerability in Cisco SD-WAN Solution software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. | 7.8 |
2020-03-19 | CVE-2020-10678 | Improper Privilege Management vulnerability in Octopus Deploy In Octopus Deploy before 2020.1.5, for customers running on-premises Active Directory linked to their Octopus server, an authenticated user can leverage a bug to escalate privileges. | 6.5 |