Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-16 | CVE-2022-30695 | Improper Privilege Management vulnerability in Acronis Snap Deploy 6 Local privilege escalation due to excessive permissions assigned to child processes. | 4.6 |
| 2022-05-16 | CVE-2022-29587 | Improper Privilege Management vulnerability in Konicaminolta products Konica Minolta bizhub MFP devices before 2022-04-14 have an internal Chromium browser that executes with root (aka superuser) access privileges. | 4.0 |
| 2022-05-10 | CVE-2022-20112 | Improper Privilege Management vulnerability in Google Android In getAvailabilityStatus of PrivateDnsPreferenceController.java, there is a possible way for a guest user to change private DNS settings due to a permissions bypass. | 4.9 |
| 2022-05-10 | CVE-2022-20114 | Improper Privilege Management vulnerability in Google Android In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. | 7.2 |
| 2022-05-10 | CVE-2022-1397 | Improper Privilege Management vulnerability in Easyappointments API Privilege Escalation in GitHub repository alextselegidis/easyappointments prior to 1.5.0. | 9.0 |
| 2022-05-06 | CVE-2021-27765 | Improper Privilege Management vulnerability in Hcltech Bigfix Platform The BigFix Server API installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. | 4.6 |
| 2022-05-06 | CVE-2021-27766 | Improper Privilege Management vulnerability in Hcltech Bigfix Platform The BigFix Client installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. | 4.6 |
| 2022-05-06 | CVE-2021-27767 | Improper Privilege Management vulnerability in Hcltech Bigfix Platform The BigFix Console installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. | 4.6 |
| 2022-05-05 | CVE-2022-27659 | Improper Privilege Management vulnerability in F5 products On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, and 14.1.x versions prior to 14.1.4.6, an authenticated attacker can modify or delete Dashboards created by other BIG-IP users in the Traffic Management User Interface (TMUI). | 4.0 |
| 2022-05-04 | CVE-2022-25782 | Improper Privilege Management vulnerability in Secomea products Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update privileged information. | 5.5 |