Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-29 | CVE-2023-6218 | Improper Privilege Management vulnerability in Progress Moveit Transfer In Progress MOVEit Transfer versions released before 2022.0.9 (14.0.9), 2022.1.10 (14.1.10), 2023.0.7 (15.0.7), a privilege escalation path associated with group administrators has been identified. It is possible for a group administrator to elevate a group members permissions to the role of an organization administrator. | 7.2 |
| 2023-11-28 | CVE-2023-29066 | Improper Privilege Management vulnerability in BD Facschorus The FACSChorus software does not properly assign data access privileges for operating system user accounts. | 3.5 |
| 2023-11-16 | CVE-2023-44282 | Improper Privilege Management vulnerability in Dell Repository Manager 1.1.52/1.2.155/1.3.124 Dell Repository Manager, 3.4.3 and prior, contains an Improper Access Control vulnerability in its installation module. | 7.8 |
| 2023-11-16 | CVE-2023-44292 | Improper Privilege Management vulnerability in Dell Repository Manager Dell Repository Manager, 3.4.3 and prior, contains an Improper Access Control vulnerability in its installation module. | 7.8 |
| 2023-11-16 | CVE-2023-6119 | Improper Privilege Management vulnerability in Trellix Getsusp An Improper Privilege Management vulnerability in Trellix GetSusp prior to version 5.0.0.27 allows a local, low privilege attacker to gain access to files that usually require a higher privilege level. | 7.8 |
| 2023-11-14 | CVE-2023-20563 | Improper Privilege Management vulnerability in AMD products Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-20565 | Improper Privilege Management vulnerability in AMD products Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-31273 | Improper Privilege Management vulnerability in Intel Data Center Manager Protection mechanism failure in some Intel DCM software before version 5.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access. | 9.8 |
| 2023-11-09 | CVE-2023-5549 | Improper Privilege Management vulnerability in multiple products Insufficient web service capability checks made it possible to move categories a user had permission to manage, to a parent category they did not have the capability to manage. | 5.3 |
| 2023-11-03 | CVE-2023-43018 | Improper Privilege Management vulnerability in IBM Cics TX 10.1/11.1 IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. | 7.5 |