Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-02 | CVE-2021-1750 | Improper Privilege Management vulnerability in Apple products Multiple issues were addressed with improved logic. | 7.8 |
| 2021-04-02 | CVE-2020-29620 | Improper Privilege Management vulnerability in Apple mac OS X and Macos This issue was addressed with improved entitlements. | 7.8 |
| 2021-04-02 | CVE-2020-27938 | Improper Privilege Management vulnerability in Apple mac OS X A logic issue was addressed with improved state management. | 7.8 |
| 2021-03-26 | CVE-2020-7467 | Improper Privilege Management vulnerability in Freebsd In FreeBSD 12.2-STABLE before r365767, 11.4-STABLE before r365769, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped. | 7.6 |
| 2021-03-26 | CVE-2021-28250 | Improper Privilege Management vulnerability in CA Ehealth Performance Manager CA eHealth Performance Manager through 6.3.2.12 is affected by Privilege Escalation via a setuid (and/or setgid) file. | 7.8 |
| 2021-03-25 | CVE-2021-27454 | Improper Privilege Management vulnerability in GE Reason Dr60 Firmware The software performs an operation at a privilege level higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses on the Reason DR60 (all firmware versions prior to 02A04.1). | 7.8 |
| 2021-03-25 | CVE-2021-27448 | Improper Privilege Management vulnerability in GE Mu320E Firmware A miscommunication in the file system allows adversaries with access to the MU320E to escalate privileges on the MU320E (all firmware versions prior to v04A00.1). | 7.8 |
| 2021-03-25 | CVE-2021-27192 | Improper Privilege Management vulnerability in Netop Vision PRO Local privilege escalation vulnerability in Windows clients of Netop Vision Pro up to and including 9.7.1 allows a local user to gain administrator privileges whilst using the clients. | 7.8 |
| 2021-03-24 | CVE-2021-1371 | Improper Privilege Management vulnerability in Cisco IOS XE Sd-Wan 17.2.0 A vulnerability in the role-based access control of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker with read-only privileges to obtain administrative privileges by using the console port when the device is in the default SD-WAN configuration. | 6.6 |
| 2021-03-17 | CVE-2017-20002 | Improper Privilege Management vulnerability in Debian Linux and Shadow The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists pts/0 and pts/1 as physical terminals in /etc/securetty. | 7.8 |