Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-22 | CVE-2021-0255 | Improper Privilege Management vulnerability in Juniper Junos A local privilege escalation vulnerability in ethtraceroute of Juniper Networks Junos OS may allow a locally authenticated user with shell access to escalate privileges and write to the local filesystem as root. | 7.8 |
| 2021-04-21 | CVE-2021-31523 | Improper Privilege Management vulnerability in Xscreensaver Project Xscreensaver 5.42+Dfsg11 The Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has cap_net_raw enabled for the /usr/libexec/xscreensaver/sonar file, which allows local users to gain privileges because this is arguably incompatible with the design of the Mesa 3D Graphics library dependency. | 7.8 |
| 2021-04-19 | CVE-2021-20208 | Improper Privilege Management vulnerability in multiple products A flaw was found in cifs-utils in versions before 6.13. | 6.1 |
| 2021-04-19 | CVE-2021-21981 | Improper Privilege Management vulnerability in VMWare Nsx-T Data Center 3.1.1 VMware NSX-T contains a privilege escalation vulnerability due to an issue with RBAC (Role based access control) role assignment. | 7.8 |
| 2021-04-16 | CVE-2021-27394 | Improper Privilege Management vulnerability in Mendix A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.19), Mendix Applications using Mendix 8 (All versions < V8.17.0), Mendix Applications using Mendix 8 (V8.12) (All versions < V8.12.5), Mendix Applications using Mendix 8 (V8.6) (All versions < V8.6.9), Mendix Applications using Mendix 9 (All versions < V9.0.5). | 8.8 |
| 2021-04-15 | CVE-2021-30479 | Improper Privilege Management vulnerability in Zulip Server An issue was discovered in Zulip Server before 3.4. | 5.3 |
| 2021-04-15 | CVE-2021-30478 | Improper Privilege Management vulnerability in Zulip Server An issue was discovered in Zulip Server before 3.4. | 4.3 |
| 2021-04-13 | CVE-2021-28322 | Improper Privilege Management vulnerability in Microsoft products Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability | 7.8 |
| 2021-04-13 | CVE-2021-28313 | Improper Privilege Management vulnerability in Microsoft products Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability | 7.8 |
| 2021-04-12 | CVE-2020-15390 | Improper Privilege Management vulnerability in Pega Platform 8.4.0.237 pyActivity in Pega Platform 8.4.0.237 has a security misconfiguration that leads to an improper access control vulnerability via =GetWebInfo. | 9.8 |