Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-18 | CVE-2020-9225 | Improper Privilege Management vulnerability in Huawei Fusionsphere Openstack 6.5.1 FusionSphere OpenStack 6.5.1 have an improper permissions management vulnerability. | 7.8 |
| 2020-06-16 | CVE-2020-7509 | Improper Privilege Management vulnerability in Schneider-Electric Easergy T300 Firmware 1.5.2 A CWE-269: Improper privilege management (write) vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an attacker to elevate their privileges and delete files. | 7.2 |
| 2020-06-11 | CVE-2020-13854 | Improper Privilege Management vulnerability in Pandorafms Pandora FMS 7.44 Artica Pandora FMS 7.44 allows privilege escalation. | 9.8 |
| 2020-06-11 | CVE-2020-12850 | Improper Privilege Management vulnerability in Pydio Cells 2.0.4 The following vulnerability applies only to the Pydio Cells Enterprise OVF version 2.0.4. | 7.0 |
| 2020-06-11 | CVE-2020-12713 | Improper Privilege Management vulnerability in Ciphermail Gateway and Webmail Messenger An issue was discovered in CipherMail Community Gateway and Professional/Enterprise Gateway 1.0.1 through 4.7.1-0 and CipherMail Webmail Messenger 1.1.1 through 3.1.1-0. | 7.2 |
| 2020-06-10 | CVE-2020-12757 | Improper Privilege Management vulnerability in Hashicorp Vault 1.4.0/1.4.1/1.4.2 HashiCorp Vault and Vault Enterprise 1.4.0 and 1.4.1, when configured with the GCP Secrets Engine, may incorrectly generate GCP Credentials with the default time-to-live lease duration instead of the engine-configured setting. | 9.8 |
| 2020-06-10 | CVE-2020-7280 | Improper Privilege Management vulnerability in Mcafee Virusscan Enterprise 8.8 Privilege Escalation vulnerability during daily DAT updates when using McAfee Virus Scan Enterprise (VSE) prior to 8.8 Patch 15 allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links. | 7.8 |
| 2020-06-10 | CVE-2019-3588 | Improper Privilege Management vulnerability in Mcafee Virusscan Enterprise 8.8 Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow unauthorized users to interact with the On-Access Scan Messages - Threat Alert Window when the Windows Login Screen is locked. | 6.8 |
| 2020-06-10 | CVE-2019-3585 | Improper Privilege Management vulnerability in Mcafee Virusscan Enterprise 8.8 Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow local users to interact with the On-Access Scan Messages - Threat Alert Window with elevated privileges via running McAfee Tray with elevated privileges. | 7.8 |
| 2020-06-10 | CVE-2019-3617 | Improper Privilege Management vulnerability in Mcafee Total Protection Privilege escalation vulnerability in McAfee Total Protection (ToPS) for Mac OS prior to 4.6 allows local users to gain root privileges via incorrect protection of temporary files. | 8.2 |