Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-31 | CVE-2022-4441 | Improper Privilege Management vulnerability in Hitachi Storage Plug-In 04.8.0/04.9.0 Incorrect Privilege Assignment vulnerability in Hitachi Storage Plug-in for VMware vCenter allows remote authenticated users to cause privilege escalation. This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.9.0 before 04.9.1. | 8.8 |
| 2023-01-28 | CVE-2023-23629 | Improper Privilege Management vulnerability in Metabase Metabase is an open source data analytics platform. | 6.3 |
| 2023-01-20 | CVE-2023-0101 | Improper Privilege Management vulnerability in Tenable Nessus A privilege escalation vulnerability was identified in Nessus versions 8.10.1 through 8.15.8 and 10.0.0 through 10.4.1. | 8.8 |
| 2023-01-20 | CVE-2023-22331 | Improper Privilege Management vulnerability in Contec Conprosys HMI System Use of default credentials vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote unauthenticated attacker to alter user credentials information. | 7.5 |
| 2023-01-18 | CVE-2023-22809 | Improper Privilege Management vulnerability in multiple products In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided environment variables (SUDO_EDITOR, VISUAL, and EDITOR), allowing a local attacker to append arbitrary entries to the list of files to process. | 7.8 |
| 2023-01-13 | CVE-2023-0221 | Improper Privilege Management vulnerability in Mcafee Application and Change Control Product security bypass vulnerability in ACC prior to version 8.3.4 allows a locally logged-in attacker with administrator privileges to bypass the execution controls provided by ACC using the utilman program. | 4.4 |
| 2023-01-10 | CVE-2023-21531 | Improper Privilege Management vulnerability in Microsoft Azure Service Fabric 8.2/9.0/9.1 Azure Service Fabric Container Elevation of Privilege Vulnerability | 7.0 |
| 2023-01-10 | CVE-2023-21542 | Improper Privilege Management vulnerability in Microsoft products Windows Installer Elevation of Privilege Vulnerability | 7.0 |
| 2023-01-10 | CVE-2023-21549 | Improper Privilege Management vulnerability in Microsoft products Windows SMB Witness Service Elevation of Privilege Vulnerability | 8.8 |
| 2023-01-10 | CVE-2023-21551 | Improper Privilege Management vulnerability in Microsoft products Microsoft Cryptographic Services Elevation of Privilege Vulnerability | 7.8 |