Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-11 | CVE-2022-27487 | Improper Privilege Management vulnerability in Fortinet Fortideceptor and Fortisandbox A improper privilege management in Fortinet FortiSandbox version 4.2.0 through 4.2.2, 4.0.0 through 4.0.2 and before 3.2.3 and FortiDeceptor version 4.1.0, 4.0.0 through 4.0.2 and before 3.3.3 allows a remote authenticated attacker to perform unauthorized API calls via crafted HTTP or HTTPS requests. | 8.8 |
| 2023-04-06 | CVE-2023-20655 | Improper Privilege Management vulnerability in Google Android In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. | 7.8 |
| 2023-04-05 | CVE-2023-0959 | Improper Privilege Management vulnerability in Imaworldhealth Bhima 1.27.0 Bhima version 1.27.0 allows a remote attacker to update the privileges of any account registered in the application via a malicious link sent to an administrator. | 6.5 |
| 2023-04-05 | CVE-2023-28855 | Improper Privilege Management vulnerability in Teclib-Edition Fields Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms. | 6.5 |
| 2023-04-04 | CVE-2022-48227 | Improper Privilege Management vulnerability in Gbgplc Acuant Asureid Sentinel An issue was discovered in Acuant AsureID Sentinel before 5.2.149. | 7.8 |
| 2023-04-04 | CVE-2022-48226 | Improper Privilege Management vulnerability in Gbgplc Acuant Acufill SDK An issue was discovered in Acuant AcuFill SDK before 10.22.02.03. | 7.8 |
| 2023-03-29 | CVE-2017-6894 | Improper Privilege Management vulnerability in Flexera Flexnet Manager and Flexnet Manager Suite 2015 A vulnerability exists in FlexNet Manager Suite releases 2015 R2 SP3 and earlier (including FlexNet Manager Platform 9.2 and earlier) that affects the inventory gathering components and can be exploited by local users to perform certain actions with elevated privileges on the local system. | 7.8 |
| 2023-03-29 | CVE-2023-0664 | Improper Privilege Management vulnerability in multiple products A flaw was found in the QEMU Guest Agent service for Windows. | 7.8 |
| 2023-03-22 | CVE-2022-43863 | Improper Privilege Management vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.4 and 7.5 is vulnerable to privilege escalation, allowing a user with some admin capabilities to gain additional admin capabilities. | 7.2 |
| 2023-03-22 | CVE-2023-25590 | Improper Privilege Management vulnerability in Arubanetworks Clearpass Policy Manager A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux instance to elevate their user privileges to those of a higher role. | 7.8 |