Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-26 | CVE-2024-23620 | Improper Privilege Management vulnerability in IBM Merge Efilm Workstation 4.2 An improper privilege management vulnerability exists in IBM Merge Healthcare eFilm Workstation. | 7.8 |
| 2024-01-25 | CVE-2024-22922 | Improper Privilege Management vulnerability in Projectworlds Visitor Management System in PHP 1.0 An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to escalate privileges via a crafted script to the login page in the POST/index.php | 9.8 |
| 2024-01-23 | CVE-2024-0751 | Improper Privilege Management vulnerability in multiple products A malicious devtools extension could have been used to escalate privileges. | 8.8 |
| 2024-01-16 | CVE-2023-52105 | Improper Privilege Management vulnerability in Huawei Harmonyos 4.0.0 The nearby module has a privilege escalation vulnerability. | 7.5 |
| 2024-01-12 | CVE-2023-6735 | Improper Privilege Management vulnerability in multiple products Privilege escalation in mk_tsm agent plugin in Checkmk before 2.2.0p18, 2.1.0p38 and 2.0.0p39 allows local user to escalate privileges | 7.8 |
| 2024-01-12 | CVE-2023-6740 | Improper Privilege Management vulnerability in multiple products Privilege escalation in jar_signature agent plugin in Checkmk before 2.2.0p18, 2.1.0p38 and 2.0.0p39 allows local user to escalate privileges | 7.8 |
| 2024-01-10 | CVE-2023-44250 | Improper Privilege Management vulnerability in Fortinet Fortios and Fortiproxy An improper privilege management vulnerability [CWE-269] in a Fortinet FortiOS HA cluster version 7.4.0 through 7.4.1 and 7.2.5 and in a FortiProxy HA cluster version 7.4.0 through 7.4.1 allows an authenticated attacker to perform elevated actions via crafted HTTP or HTTPS requests. | 8.8 |
| 2024-01-03 | CVE-2023-30617 | Improper Privilege Management vulnerability in Openkruise Kruise Kruise provides automated management of large-scale applications on Kubernetes. | 6.5 |
| 2024-01-03 | CVE-2023-41776 | Improper Privilege Management vulnerability in ZTE Zxcloud Irai Firmware There is a local privilege escalation vulnerability of ZTE's ZXCLOUD iRAI.Attackers with regular user privileges can create a fake process, and to escalate local privileges. | 7.8 |
| 2023-12-29 | CVE-2023-51429 | Improper Privilege Management vulnerability in Hihonor Magic OS Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause information leak. | 5.5 |