Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-07 | CVE-2020-36542 | Improper Privilege Management vulnerability in Demokratian A vulnerability classified as critical has been found in Demokratian. | 9.8 |
| 2022-05-26 | CVE-2022-21827 | Improper Privilege Management vulnerability in Citrix Gateway Plug-In 12.158/12.158.15/13.061.48 An improper privilege vulnerability has been discovered in Citrix Gateway Plug-in for Windows (Citrix Secure Access for Windows) <21.9.1.2 what could allow an attacker who has gained local access to a computer with Citrix Gateway Plug-in installed, to corrupt or delete files as SYSTEM. | 7.1 |
| 2022-05-24 | CVE-2022-29333 | Improper Privilege Management vulnerability in Cyberlink Powerdirector 14.0 A vulnerability in CyberLink Power Director v14 allows attackers to escalate privileges via a crafted .exe file. | 7.8 |
| 2022-05-24 | CVE-2014-125001 | Improper Privilege Management vulnerability in Cardosystems Scala Rider Q3 Firmware A vulnerability classified as critical has been found in Cardo Systems Scala Rider Q3. | 8.8 |
| 2022-05-21 | CVE-2022-31267 | Improper Privilege Management vulnerability in Gitblit 1.9.2 Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "#admin"' value. | 9.8 |
| 2022-05-20 | CVE-2022-1770 | Improper Privilege Management vulnerability in Trudesk Project Trudesk Improper Privilege Management in GitHub repository polonel/trudesk prior to 1.2.2. | 8.8 |
| 2022-05-16 | CVE-2022-30695 | Improper Privilege Management vulnerability in Acronis Snap Deploy 6 Local privilege escalation due to excessive permissions assigned to child processes. | 7.8 |
| 2022-05-16 | CVE-2022-29587 | Improper Privilege Management vulnerability in Konicaminolta products Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges. | 4.0 |
| 2022-05-10 | CVE-2022-20112 | Improper Privilege Management vulnerability in Google Android In getAvailabilityStatus of PrivateDnsPreferenceController.java, there is a possible way for a guest user to change private DNS settings due to a permissions bypass. | 5.5 |
| 2022-05-10 | CVE-2022-20114 | Improper Privilege Management vulnerability in Google Android In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. | 7.8 |