Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-21 | CVE-2019-11847 | Improper Privilege Management vulnerability in Sierrawireless Aleos An improper privilege management vulnerabitlity exists in ALEOS before 4.11.0, 4.9.4 and 4.4.9. | 7.8 |
| 2020-08-21 | CVE-2020-10290 | Improper Privilege Management vulnerability in Sintef URX Universal Robots controller execute URCaps (zip files containing Java-powered applications) without any permission restrictions and a wide API that presents many primitives that can compromise the overall robot operations as demonstrated in our video. | 6.8 |
| 2020-08-21 | CVE-2020-7310 | Improper Privilege Management vulnerability in Mcafee Total Protection Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via manipulating symbolic links to redirect a McAfee file operations to an unintended file. | 6.9 |
| 2020-08-21 | CVE-2020-14215 | Improper Privilege Management vulnerability in Zulip Server Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations. | 7.5 |
| 2020-08-21 | CVE-2020-14194 | Improper Privilege Management vulnerability in Zulip Server Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link. | 5.4 |
| 2020-08-20 | CVE-2020-15862 | Improper Privilege Management vulnerability in multiple products Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root. | 7.8 |
| 2020-08-18 | CVE-2020-7019 | Improper Privilege Management vulnerability in Elastic Elasticsearch In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. | 6.5 |
| 2020-08-18 | CVE-2020-7018 | Improper Privilege Management vulnerability in Elastic Enterprise Search Elastic Enterprise Search before 7.9.0 contain a credential exposure flaw in the App Search interface. | 8.8 |
| 2020-08-14 | CVE-2015-8032 | Improper Privilege Management vulnerability in Textpattern 4.5.7 In Textpattern 4.5.7, an unprivileged author can change an article's markup setting. | 5.3 |
| 2020-08-13 | CVE-2020-24331 | Improper Privilege Management vulnerability in multiple products An issue was discovered in TrouSerS through 0.3.14. | 7.8 |