Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-28 | CVE-2022-46172 | Improper Privilege Management vulnerability in Goauthentik Authentik authentik is an open-source Identity provider focused on flexibility and versatility. | 6.4 |
| 2022-12-25 | CVE-2022-37706 | Improper Privilege Management vulnerability in Enlightenment enlightenment_sys in Enlightenment before 0.25.4 allows local users to gain privileges because it is setuid root, and the system library function mishandles pathnames that begin with a /dev/.. | 7.8 |
| 2022-12-23 | CVE-2022-41290 | Improper Privilege Management vulnerability in IBM AIX and Vios IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges. | 8.4 |
| 2022-12-23 | CVE-2022-38757 | Improper Privilege Management vulnerability in Microfocus Zenworks 2020 A vulnerability has been identified in Micro Focus ZENworks 2020 Update 3a and prior versions. | 7.2 |
| 2022-12-23 | CVE-2022-4687 | Improper Privilege Management vulnerability in Usememos Memos Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0. | 8.1 |
| 2022-12-21 | CVE-2022-46334 | Improper Privilege Management vulnerability in Proofpoint Enterprise Protection Proofpoint Enterprise Protection (PPS/PoD) contains a vulnerability which allows the pps user to escalate to root privileges due to unnecessary permissions. | 7.8 |
| 2022-12-21 | CVE-2022-38065 | Improper Privilege Management vulnerability in Redhat Openstack A privilege escalation vulnerability exists in the oslo.privsep functionality of OpenStack git master 05194e7618 and prior. | 8.8 |
| 2022-12-20 | CVE-2022-42046 | Improper Privilege Management vulnerability in WFS Heaven Burns RED 2.5.0 wfshbr64.sys and wfshbr32.sys specially crafted IOCTL allows arbitrary user to perform local privilege escalation | 7.8 |
| 2022-12-13 | CVE-2022-38124 | Improper Privilege Management vulnerability in Secomea products Debug tool in Secomea SiteManager allows logged-in administrator to modify system state in an unintended manner. | 6.5 |
| 2022-12-12 | CVE-2022-4314 | Improper Privilege Management vulnerability in Ikus-Soft Rdiffweb Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2. | 9.8 |