Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-14 | CVE-2023-25149 | Improper Privilege Management vulnerability in Timescale Timescaledb TimescaleDB, an open-source time-series SQL database, has a privilege escalation vulnerability in versions 2.8.0 through 2.9.2. | 8.8 |
| 2023-02-11 | CVE-2022-34384 | Improper Privilege Management vulnerability in Dell products Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. | 7.8 |
| 2023-02-09 | CVE-2023-21421 | Improper Privilege Management vulnerability in Samsung Android 10.0/11.0 Improper Handling of Insufficient Permissions or Privileges vulnerability in KnoxCustomManagerService prior to SMR Jan-2023 Release 1 allows attacker to access device SIM PIN. | 7.8 |
| 2023-02-08 | CVE-2022-38777 | Improper Privilege Management vulnerability in Elastic Endgame and Endpoint Security An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account. | 7.8 |
| 2023-02-07 | CVE-2022-43759 | Improper Privilege Management vulnerability in Suse Rancher A Improper Privilege Management vulnerability in SUSE Rancher, allows users with access to the escalate verb on PRTBs to escalate permissions for any -promoted resource in any cluster. | 8.8 |
| 2023-02-06 | CVE-2022-48019 | Improper Privilege Management vulnerability in WFS Another Eden The components wfshbr64.sys and wfshbr32.sys in Another Eden before v3.0.20 and before v2.14.200 allows attackers to perform privilege escalation via a crafted payload. | 7.8 |
| 2023-02-03 | CVE-2023-20854 | Improper Privilege Management vulnerability in VMWare Workstation 17.0 VMware Workstation contains an arbitrary file deletion vulnerability. | 8.4 |
| 2023-02-02 | CVE-2020-24307 | Improper Privilege Management vulnerability in Mremoteng 1.76.20 An issue in mRemoteNG v1.76.20 allows attackers to escalate privileges via a crafted executable file. | 7.8 |
| 2023-02-01 | CVE-2022-45101 | Improper Privilege Management vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS 9.0.0.x - 9.4.0.x, contains an Improper Handling of Insufficient Privileges vulnerability in NFS. | 9.8 |
| 2023-01-31 | CVE-2022-4041 | Improper Privilege Management vulnerability in Hitachi Storage Plug-In 04.8.0/04.9.0 Incorrect Privilege Assignment vulnerability in Hitachi Storage Plug-in for VMware vCenter allows remote authenticated users to cause privilege escalation. This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.8.0 before 04.9.1. | 8.8 |