Vulnerabilities > Improper Privilege Management
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-01-22 | CVE-2018-16271 | Improper Privilege Management vulnerability in Samsung products The wemail_consumer_service (from the built-in application wemail) in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox, due to improper D-Bus security policy configurations. | 3.3 |
2020-01-22 | CVE-2018-16270 | Improper Privilege Management vulnerability in Samsung products Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. | 5.0 |
2020-01-22 | CVE-2018-16268 | Improper Privilege Management vulnerability in Linux Tizen The SoundServer/FocusServer system services in Tizen allow an unprivileged process to perform media-related system actions, due to improper D-Bus security policy configurations. | 4.3 |
2020-01-22 | CVE-2018-16267 | Improper Privilege Management vulnerability in Linux Tizen The system-popup system service in Tizen allows an unprivileged process to perform popup-related system actions, due to improper D-Bus security policy configurations. | 8.1 |
2020-01-22 | CVE-2018-16266 | Improper Privilege Management vulnerability in Linux Tizen The Enlightenment system service in Tizen allows an unprivileged process to fully control or capture windows, due to improper D-Bus security policy configurations. | 8.1 |
2020-01-22 | CVE-2018-16265 | Improper Privilege Management vulnerability in Linux Tizen The bt/bt_core system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. | 6.5 |
2020-01-22 | CVE-2018-16263 | Improper Privilege Management vulnerability in Linux Tizen The PulseAudio system service in Tizen allows an unprivileged process to control its A2DP MediaEndpoint, due to improper D-Bus security policy configurations. | 8.8 |
2020-01-22 | CVE-2018-16262 | Improper Privilege Management vulnerability in Linux Tizen The pkgmgr system service in Tizen allows an unprivileged process to perform package management actions, due to improper D-Bus security policy configurations. | 8.8 |
2020-01-17 | CVE-2019-14613 | Improper Privilege Management vulnerability in Intel Vtune Profiler 2017/2018/2019 Improper access control in driver for Intel(R) VTune(TM) Amplifier for Windows* before update 8 may allow an authenticated user to potentially enable escalation of privilege via local access. | 4.6 |
2020-01-16 | CVE-2020-7048 | Improper Privilege Management vulnerability in Webfactoryltd WP Database Reset The WordPress plugin, WP Database Reset through 3.1, contains a flaw that allowed any unauthenticated user to reset any table in the database to the initial WordPress set-up state (deleting all site content stored in that table), as demonstrated by a wp-admin/admin-post.php?db-reset-tables[]=comments URI. | 6.4 |