Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-26 | CVE-2020-7467 | Improper Privilege Management vulnerability in Freebsd In FreeBSD 12.2-STABLE before r365767, 11.4-STABLE before r365769, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped. | 7.6 |
| 2021-03-26 | CVE-2021-28250 | Improper Privilege Management vulnerability in CA Ehealth Performance Manager CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a setuid (and/or setgid) file. | 7.8 |
| 2021-03-25 | CVE-2021-27454 | Improper Privilege Management vulnerability in GE Reason Dr60 Firmware The software performs an operation at a privilege level higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses on the Reason DR60 (all firmware versions prior to 02A04.1). | 7.8 |
| 2021-03-25 | CVE-2021-27448 | Improper Privilege Management vulnerability in GE Mu320E Firmware A miscommunication in the file system allows adversaries with access to the MU320E to escalate privileges on the MU320E (all firmware versions prior to v04A00.1). | 7.8 |
| 2021-03-25 | CVE-2021-27192 | Improper Privilege Management vulnerability in Netop Vision PRO Local privilege escalation vulnerability in Windows clients of Netop Vision Pro up to and including 9.7.1 allows a local user to gain administrator privileges whilst using the clients. | 7.8 |
| 2021-03-17 | CVE-2017-20002 | Improper Privilege Management vulnerability in Debian Linux and Shadow The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. | 7.8 |
| 2021-03-15 | CVE-2020-4184 | Improper Privilege Management vulnerability in IBM Security Guardium 11.2 IBM Security Guardium 11.2 performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. | 7.3 |
| 2021-03-02 | CVE-2020-12528 | Improper Privilege Management vulnerability in Mbconnectline Mbconnect24 and Mymbconnect24 An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. | 7.7 |
| 2021-02-23 | CVE-2021-26594 | Improper Privilege Management vulnerability in Rangerstudio Directus In Directus 8.x through 8.8.1, an attacker can switch to the administrator role (via the PATCH method) without any control by the back end. | 8.8 |
| 2021-02-23 | CVE-2021-25630 | Improper Privilege Management vulnerability in Collaboraoffice Online "loolforkit" is a privileged program that is supposed to be run by a special, non-privileged "lool" user. | 7.8 |