Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-24 | CVE-2015-4719 | Improper Privilege Management vulnerability in Pexip Infinity 7.0/9 The client API authentication mechanism in Pexip Infinity before 10 allows remote attackers to gain privileges via a crafted request. | 9.8 |
| 2020-09-23 | CVE-2020-25595 | Improper Privilege Management vulnerability in multiple products An issue was discovered in Xen through 4.14.x. | 7.8 |
| 2020-09-18 | CVE-2020-8247 | Improper Privilege Management vulnerability in Citrix products Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-WAN WANOP 11.1 before 11.1.2a, Citrix SD-WAN WANOP 11.0 before 11.0.3f, Citrix SD-WAN WANOP 10.2 before 10.2.7b are vulnerable to escalation of privileges on the management interface. | 8.8 |
| 2020-09-17 | CVE-2020-0403 | Improper Privilege Management vulnerability in Google Android In the FPC TrustZone fingerprint App, there is a possible invalid command handler due to an exposed test feature. | 6.7 |
| 2020-09-17 | CVE-2020-24046 | Improper Privilege Management vulnerability in Titanhq Spamtitan 7.07 A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. | 7.2 |
| 2020-09-17 | CVE-2020-0404 | Improper Privilege Management vulnerability in multiple products In uvc_scan_chain_forward of uvc_driver.c, there is a possible linked list corruption due to an unusual root cause. | 5.5 |
| 2020-09-17 | CVE-2020-0074 | Improper Privilege Management vulnerability in Google Android In verifyIntentFiltersIfNeeded of PackageManagerService.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. | 7.8 |
| 2020-09-10 | CVE-2020-9733 | Improper Privilege Management vulnerability in Adobe Experience Manager An AEM java servlet in AEM versions 6.5.5.0 (and below) and 6.4.8.1 (and below) executes with the permissions of a high privileged service user. | 7.5 |
| 2020-09-10 | CVE-2020-7311 | Improper Privilege Management vulnerability in Mcafee Agent 5.0.0 Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files. | 7.0 |
| 2020-09-09 | CVE-2020-7324 | Improper Privilege Management vulnerability in Mcafee Mvision Endpoint 18.11.31.62/20.5.0.94/20.7 Improper Access Control vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied permissions. | 6.1 |