Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-24 | CVE-2023-25133 | Improper Privilege Management vulnerability in Cyberpower Powerpanel 4.8.6 Improper privilege management vulnerability in default.cmd file in PowerPanel Business Local/Remote for Windows v4.8.6 and earlier, PowerPanel Business Management for Windows v4.8.6 and earlier, PowerPanel Business Local/Remote for Linux 32bit v4.8.6 and earlier, PowerPanel Business Local/Remote for Linux 64bit v4.8.6 and earlier, PowerPanel Business Management for Linux 32bit v4.8.6 and earlier, PowerPanel Business Management for Linux 64bit v4.8.6 and earlier, PowerPanel Business Local/Remote for MacOS v4.8.6 and earlier, and PowerPanel Business Management for MacOS v4.8.6 and earlier allows remote attackers to execute operation system commands via unspecified vectors. | 9.8 |
| 2023-04-21 | CVE-2022-47505 | Improper Privilege Management vulnerability in Solarwinds Orion Platform The SolarWinds Platform was susceptible to the Local Privilege Escalation Vulnerability. | 7.8 |
| 2023-04-13 | CVE-2023-1326 | Improper Privilege Management vulnerability in Canonical Apport A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. | 7.8 |
| 2023-04-12 | CVE-2023-27830 | Improper Privilege Management vulnerability in Tightvnc TightVNC before v2.8.75 allows attackers to escalate privileges on the host operating system via replacing legitimate files with crafted files when executing a file transfer. | 9.0 |
| 2023-04-11 | CVE-2022-27487 | Improper Privilege Management vulnerability in Fortinet Fortideceptor and Fortisandbox A improper privilege management in Fortinet FortiSandbox version 4.2.0 through 4.2.2, 4.0.0 through 4.0.2 and before 3.2.3 and FortiDeceptor version 4.1.0, 4.0.0 through 4.0.2 and before 3.3.3 allows a remote authenticated attacker to perform unauthorized API calls via crafted HTTP or HTTPS requests. | 8.8 |
| 2023-04-06 | CVE-2023-20655 | Improper Privilege Management vulnerability in Google Android In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. | 7.8 |
| 2023-04-05 | CVE-2023-0959 | Improper Privilege Management vulnerability in Imaworldhealth Bhima 1.27.0 Bhima version 1.27.0 allows a remote attacker to update the privileges of any account registered in the application via a malicious link sent to an administrator. | 6.5 |
| 2023-04-05 | CVE-2023-28855 | Improper Privilege Management vulnerability in Teclib-Edition Fields Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms. | 6.5 |
| 2023-04-04 | CVE-2022-48227 | Improper Privilege Management vulnerability in Gbgplc Acuant Asureid Sentinel An issue was discovered in Acuant AsureID Sentinel before 5.2.149. | 7.8 |
| 2023-04-04 | CVE-2022-48226 | Improper Privilege Management vulnerability in Gbgplc Acuant Acufill SDK An issue was discovered in Acuant AcuFill SDK before 10.22.02.03. | 7.8 |