Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-13 | CVE-2023-1326 | Improper Privilege Management vulnerability in Canonical Apport A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. | 7.8 |
| 2023-04-12 | CVE-2023-27830 | Improper Privilege Management vulnerability in Tightvnc TightVNC before v2.8.75 allows attackers to escalate privileges on the host operating system via replacing legitimate files with crafted files when executing a file transfer. | 9.0 |
| 2023-04-11 | CVE-2022-27487 | Improper Privilege Management vulnerability in Fortinet Fortideceptor and Fortisandbox A improper privilege management in Fortinet FortiSandbox version 4.2.0 through 4.2.2, 4.0.0 through 4.0.2 and before 3.2.3 and FortiDeceptor version 4.1.0, 4.0.0 through 4.0.2 and before 3.3.3 allows a remote authenticated attacker to perform unauthorized API calls via crafted HTTP or HTTPS requests. | 8.8 |
| 2023-04-06 | CVE-2023-20655 | Improper Privilege Management vulnerability in Google Android In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. | 7.8 |
| 2023-04-05 | CVE-2023-0959 | Improper Privilege Management vulnerability in Imaworldhealth Bhima 1.27.0 Bhima version 1.27.0 allows a remote attacker to update the privileges of any account registered in the application via a malicious link sent to an administrator. | 6.5 |
| 2023-04-05 | CVE-2023-28855 | Improper Privilege Management vulnerability in Teclib-Edition Fields Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms. | 6.5 |
| 2023-04-04 | CVE-2022-48227 | Improper Privilege Management vulnerability in Gbgplc Acuant Asureid Sentinel An issue was discovered in Acuant AsureID Sentinel before 5.2.149. | 7.8 |
| 2023-04-04 | CVE-2022-48226 | Improper Privilege Management vulnerability in Gbgplc Acuant Acufill SDK An issue was discovered in Acuant AcuFill SDK before 10.22.02.03. | 7.8 |
| 2023-03-29 | CVE-2017-6894 | Improper Privilege Management vulnerability in Flexera Flexnet Manager and Flexnet Manager Suite 2015 A vulnerability exists in FlexNet Manager Suite releases 2015 R2 SP3 and earlier (including FlexNet Manager Platform 9.2 and earlier) that affects the inventory gathering components and can be exploited by local users to perform certain actions with elevated privileges on the local system. | 7.8 |
| 2023-03-29 | CVE-2023-0664 | Improper Privilege Management vulnerability in multiple products A flaw was found in the QEMU Guest Agent service for Windows. | 7.8 |