Vulnerabilities > Improper Privilege Management

DATE CVE VULNERABILITY TITLE RISK
2020-04-20 CVE-2017-18837 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
7.8
7.8
2020-04-20 CVE-2017-18830 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
7.8
7.8
2020-04-20 CVE-2017-18829 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
7.8
7.8
2020-04-20 CVE-2017-18826 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
7.8
7.8
2020-04-20 CVE-2017-18822 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by vertical privilege escalation.
local
low complexity
netgear CWE-269
7.8
7.8
2020-04-20 CVE-2017-18838 Improper Privilege Management vulnerability in Netgear products
Certain NETGEAR devices are affected by privilege escalation.
local
low complexity
netgear CWE-269
7.8
7.8
2020-04-15 CVE-2020-3250 Improper Privilege Management vulnerability in Cisco UCS Director and UCS Director Express for BIG Data
Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device.
network
low complexity
cisco CWE-269
critical
 9.8
9.8
2020-04-15 CVE-2020-3243 Improper Privilege Management vulnerability in Cisco UCS Director and UCS Director Express for BIG Data
Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device.
network
low complexity
cisco CWE-269
critical
 9.8
9.8
2020-04-15 CVE-2020-11799 Improper Privilege Management vulnerability in Z-Cron 5.6
Z-Cron 5.6 Build 04 allows an unprivileged attacker to elevate privileges by modifying a privileged user's task.
network
low complexity
z-cron CWE-269
critical
 9.8
9.8
2020-04-15 CVE-2019-12522 Improper Privilege Management vulnerability in Squid-Cache Squid
An issue was discovered in Squid through 4.7.
local
high complexity
squid-cache CWE-269
4.5
4.5