Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-07 | CVE-2021-26758 | Improper Privilege Management vulnerability in Litespeedtech Openlitespeed 1.7.8 Privilege Escalation in LiteSpeed Technologies OpenLiteSpeed web server version 1.7.8 allows attackers to gain root terminal access and execute commands on the host system. | 8.8 |
| 2021-04-06 | CVE-2021-20334 | Improper Privilege Management vulnerability in Mongodb Compass A malicious 3rd party with local access to the Windows machine where MongoDB Compass is installed can execute arbitrary software with the privileges of the user who is running MongoDB Compass. | 7.8 |
| 2021-04-05 | CVE-2021-24207 | Improper Privilege Management vulnerability in Themeum WP Page Builder By default, the WP Page Builder WordPress plugin before 1.2.4 allows subscriber-level users to edit and make changes to any and all posts pages - user roles must be specifically blocked from editing posts and pages. | 4.3 |
| 2021-04-02 | CVE-2021-1802 | Improper Privilege Management vulnerability in Apple mac OS X and Macos A logic issue was addressed with improved state management. | 7.8 |
| 2021-04-02 | CVE-2021-1787 | Improper Privilege Management vulnerability in Apple products Multiple issues were addressed with improved logic. | 7.8 |
| 2021-04-02 | CVE-2021-1750 | Improper Privilege Management vulnerability in Apple products Multiple issues were addressed with improved logic. | 7.8 |
| 2021-04-02 | CVE-2020-29620 | Improper Privilege Management vulnerability in Apple mac OS X and Macos This issue was addressed with improved entitlements. | 7.8 |
| 2021-04-02 | CVE-2020-27938 | Improper Privilege Management vulnerability in Apple mac OS X A logic issue was addressed with improved state management. | 7.8 |
| 2021-03-26 | CVE-2020-7467 | Improper Privilege Management vulnerability in Freebsd In FreeBSD 12.2-STABLE before r365767, 11.4-STABLE before r365769, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped. | 7.6 |
| 2021-03-26 | CVE-2021-28250 | Improper Privilege Management vulnerability in CA Ehealth Performance Manager CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a setuid (and/or setgid) file. | 7.8 |