Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-13 | CVE-2022-22483 | Improper Privilege Management vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to an information disclosure in some scenarios due to unauthorized access caused by improper privilege management when CREATE OR REPLACE command is used. | 6.5 |
| 2022-09-13 | CVE-2022-39203 | Improper Privilege Management vulnerability in Matrix IRC Bridge matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. | 8.8 |
| 2022-09-13 | CVE-2022-39202 | Improper Privilege Management vulnerability in Matrix IRC Bridge matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. | 6.3 |
| 2022-09-09 | CVE-2022-36861 | Improper Privilege Management vulnerability in Google Android 10.0/11.0/12.0 Custom permission misuse vulnerability in SystemUI prior to SMR Sep-2022 Release 1 allows attacker to use some protected functions with SystemUI privilege. | 5.3 |
| 2022-09-09 | CVE-2022-40297 | Improper Privilege Management vulnerability in Ubports Ubuntu Touch 16.04 UBports Ubuntu Touch 16.04 allows the screen-unlock passcode to be used for a privileged shell via Sudo. | 7.8 |
| 2022-09-06 | CVE-2022-30298 | Improper Privilege Management vulnerability in Fortinet Fortisoar An improper privilege management vulnerability [CWE-269] in Fortinet FortiSOAR before 7.2.1 allows a GUI user who has already found a way to modify system files (via another, unrelated and hypothetical exploit) to execute arbitrary Python commands as root. | 7.8 |
| 2022-09-06 | CVE-2021-43076 | Improper Privilege Management vulnerability in Fortinet Fortiadc An improper privilege management vulnerability [CWE-269] in FortiADC versions 6.2.1 and below, 6.1.5 and below, 6.0.4 and below, 5.4.5 and below and 5.3.7 and below may allow a remote authenticated attacker with restricted user profile to modify the system files using the shell access. | 6.5 |
| 2022-08-26 | CVE-2021-3020 | Improper Privilege Management vulnerability in Clusterlabs Hawk An issue was discovered in ClusterLabs Hawk (aka HA Web Konsole) through 2.3.0-15. | 8.8 |
| 2022-08-24 | CVE-2021-0891 | Improper Privilege Management vulnerability in Google Android An unprivileged app can trigger PowerVR driver to return an uninitialized heap memory causing information disclosure.Product: AndroidVersions: Android SoCAndroid ID: A-236849490 | 7.5 |
| 2022-08-23 | CVE-2022-31676 | Improper Privilege Management vulnerability in multiple products VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability. | 7.8 |