Vulnerabilities > Improper Privilege Management

DATE CVE VULNERABILITY TITLE RISK
2021-01-12 CVE-2021-1654 Improper Privilege Management vulnerability in Microsoft products
Windows CSC Service Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.8
7.8
2021-01-12 CVE-2021-1653 Improper Privilege Management vulnerability in Microsoft products
Windows CSC Service Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.8
7.8
2021-01-12 CVE-2021-1652 Improper Privilege Management vulnerability in Microsoft products
Windows CSC Service Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.8
7.8
2021-01-12 CVE-2021-1651 Improper Privilege Management vulnerability in Microsoft products
Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.8
7.8
2021-01-12 CVE-2021-1650 Improper Privilege Management vulnerability in Microsoft products
Windows Runtime C++ Template Library Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.8
7.8
2021-01-12 CVE-2021-1649 Improper Privilege Management vulnerability in Microsoft products
Active Template Library Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.8
7.8
2021-01-12 CVE-2021-1648 Improper Privilege Management vulnerability in Microsoft products
Microsoft splwow64 Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.8
7.8
2021-01-12 CVE-2021-1646 Improper Privilege Management vulnerability in Microsoft products
Windows WLAN Service Elevation of Privilege Vulnerability
low complexity
microsoft CWE-269
6.6
6.6
2021-01-12 CVE-2021-1642 Improper Privilege Management vulnerability in Microsoft products
Windows AppX Deployment Extensions Elevation of Privilege Vulnerability
local
low complexity
microsoft CWE-269
7.8
7.8
2021-01-11 CVE-2021-0306 Improper Privilege Management vulnerability in Google Android
In addAllPermissions of PermissionManagerService.java, there is a possible permissions bypass when upgrading major Android versions which allows an app to gain the android.permission.ACTIVITY_RECOGNITION permission without user confirmation.
local
low complexity
google CWE-269
7.8
7.8