Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-21 | CVE-2022-31267 | Improper Privilege Management vulnerability in Gitblit 1.9.2 Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext '[email protected]\n\trole = "#admin"' value. | 9.8 |
| 2022-05-20 | CVE-2022-1770 | Improper Privilege Management vulnerability in Trudesk Project Trudesk Improper Privilege Management in GitHub repository polonel/trudesk prior to 1.2.2. | 8.8 |
| 2022-05-16 | CVE-2022-30695 | Improper Privilege Management vulnerability in Acronis Snap Deploy 6 Local privilege escalation due to excessive permissions assigned to child processes. | 7.8 |
| 2022-05-16 | CVE-2022-29587 | Improper Privilege Management vulnerability in Konicaminolta products Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges. | 4.0 |
| 2022-05-10 | CVE-2022-20112 | Improper Privilege Management vulnerability in Google Android In getAvailabilityStatus of PrivateDnsPreferenceController.java, there is a possible way for a guest user to change private DNS settings due to a permissions bypass. | 5.5 |
| 2022-05-10 | CVE-2022-20114 | Improper Privilege Management vulnerability in Google Android In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. | 7.8 |
| 2022-05-10 | CVE-2022-1397 | Improper Privilege Management vulnerability in Easyappointments API Privilege Escalation in GitHub repository alextselegidis/easyappointments prior to 1.5.0. | 8.8 |
| 2022-05-06 | CVE-2021-27765 | Improper Privilege Management vulnerability in Hcltech Bigfix Platform The BigFix Server API installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. | 7.8 |
| 2022-05-06 | CVE-2021-27766 | Improper Privilege Management vulnerability in Hcltech Bigfix Platform The BigFix Client installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. | 7.8 |
| 2022-05-06 | CVE-2021-27767 | Improper Privilege Management vulnerability in Hcltech Bigfix Platform The BigFix Console installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. | 7.8 |