Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-24 | CVE-2020-28904 | Improper Privilege Management vulnerability in Nagios Fusion Execution with Unnecessary Privileges in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation as nagios via installation of a malicious component containing PHP code. | 9.8 |
| 2021-05-24 | CVE-2021-20713 | Improper Privilege Management vulnerability in Qualitysoft QND 10.3I/10.4I Privilege escalation vulnerability in QND Advance/Premium/Standard Ver.11.0.4i and earlier allows an attacker who can log in to the PC where the product's Windows client is installed to gain administrative privileges via unspecified vectors. | 7.8 |
| 2021-05-12 | CVE-2021-23891 | Improper Privilege Management vulnerability in Mcafee Total Protection Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to gain elevated privileges by impersonating a client token which could lead to the bypassing of MTP self-defense. | 7.8 |
| 2021-05-06 | CVE-2020-23128 | Improper Privilege Management vulnerability in Chamilo LMS 1.11.10 Chamilo LMS 1.11.10 does not properly manage privileges which could allow a user with Sessions administrator privilege to create a new user then use the edit user function to change this new user to administrator privilege. | 4.9 |
| 2021-05-06 | CVE-2020-28008 | Improper Privilege Management vulnerability in Exim Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. | 7.8 |
| 2021-05-06 | CVE-2020-28014 | Improper Privilege Management vulnerability in Exim Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. | 6.1 |
| 2021-05-04 | CVE-2020-27518 | Improper Privilege Management vulnerability in Windscribe All versions of Windscribe VPN for Mac and Windows <= v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. | 7.8 |
| 2021-04-30 | CVE-2020-27519 | Improper Privilege Management vulnerability in Pritunl Pritunl-Client-Electron 1.2.2550.20 Pritunl Client v1.2.2550.20 contains a local privilege escalation vulnerability in the pritunl-service component. | 7.8 |
| 2021-04-22 | CVE-2021-0255 | Improper Privilege Management vulnerability in Juniper Junos A local privilege escalation vulnerability in ethtraceroute of Juniper Networks Junos OS may allow a locally authenticated user with shell access to escalate privileges and write to the local filesystem as root. | 7.8 |
| 2021-04-21 | CVE-2021-31523 | Improper Privilege Management vulnerability in Xscreensaver Project Xscreensaver 5.42+Dfsg11 The Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has cap_net_raw enabled for the /usr/libexec/xscreensaver/sonar file, which allows local users to gain privileges because this is arguably incompatible with the design of the Mesa 3D Graphics library dependency. | 7.8 |