Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-01 | CVE-2020-11466 | Improper Privilege Management vulnerability in Deskpro An issue was discovered in Deskpro before 2019.8.0. | 4.3 |
| 2020-04-01 | CVE-2020-11464 | Improper Privilege Management vulnerability in Deskpro An issue was discovered in Deskpro before 2019.8.0. | 4.3 |
| 2020-03-31 | CVE-2020-7009 | Improper Privilege Management vulnerability in Elastic Elasticsearch Elasticsearch versions from 6.7.0 before 6.8.8 and 7.0.0 before 7.6.2 contain a privilege escalation flaw if an attacker is able to create API keys. | 8.8 |
| 2020-03-31 | CVE-2020-5291 | Improper Privilege Management vulnerability in multiple products Bubblewrap (bwrap) before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the `bwrap --userns2` option can be used to make the setuid process keep running as root while being traceable. | 7.8 |
| 2020-03-27 | CVE-2020-10940 | Improper Privilege Management vulnerability in Phoenixcontact products Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER through 3.0.7 when installed to run as a service. | 7.8 |
| 2020-03-27 | CVE-2015-8534 | Improper Privilege Management vulnerability in Lenovo Solution Center 3.3.0001 MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.8 |
| 2020-03-27 | CVE-2015-7334 | Improper Privilege Management vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.8 |
| 2020-03-27 | CVE-2015-7333 | Improper Privilege Management vulnerability in Lenovo System Update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. | 7.8 |
| 2020-03-23 | CVE-2020-8873 | Improper Privilege Management vulnerability in Parallels Desktop This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. | 6.7 |
| 2020-03-23 | CVE-2020-10793 | Improper Privilege Management vulnerability in Codeigniter CodeIgniter through 4.0.0 allows remote attackers to gain privileges via a modified Email ID to the "Select Role of the User" page. | 8.8 |