Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-15 | CVE-2015-5072 | Improper Privilege Management vulnerability in BMC Remedy AR System Server 8.0/9.0 The BIRT Engine servlet in the AR System Mid Tier component before 9.0 SP1 for BMC Remedy AR System Server allows remote authenticated users to "navigate" to arbitrary local files via the __imageid parameter. | 6.5 |
| 2020-01-15 | CVE-2015-5071 | Improper Privilege Management vulnerability in BMC Remedy AR System Server 8.0/9.0 AR System Mid Tier in the AR System Mid Tier component before 9.0 SP1 for BMC Remedy AR System Server allows remote authenticated users to "navigate" to arbitrary files via the __report parameter of the BIRT viewer servlet. | 6.5 |
| 2020-01-15 | CVE-2014-6448 | Improper Privilege Management vulnerability in Juniper Junos Juniper Junos OS 13.2 before 13.2R5, 13.2X51, 13.2X52, and 13.3 before 13.3R3 allow local users to bypass intended restrictions and execute arbitrary Python code via vectors involving shell access. | 7.8 |
| 2020-01-15 | CVE-2015-5466 | Improper Privilege Management vulnerability in SIS XGI VGA Display Manager 6.14.10.1090 Silicon Integrated Systems XGI WindowsXP Display Manager (aka XGI VGA Driver Manager and VGA Display Manager) 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call. | 7.8 |
| 2020-01-15 | CVE-2015-7556 | Improper Privilege Management vulnerability in Delegate 9.9.13 DeleGate 9.9.13 allows local users to gain privileges as demonstrated by the dgcpnod setuid program. | 7.8 |
| 2020-01-15 | CVE-2012-1563 | Improper Privilege Management vulnerability in Joomla Joomla! Joomla! before 2.5.3 allows Admin Account Creation. | 7.5 |
| 2020-01-14 | CVE-2020-0635 | Improper Privilege Management vulnerability in Microsoft products An elevation of privilege vulnerability exists in Microsoft Windows when Windows fails to properly handle certain symbolic links, aka 'Windows Elevation of Privilege Vulnerability'. | 7.8 |
| 2020-01-13 | CVE-2012-4761 | Improper Privilege Management vulnerability in Safend Data Protector Agent 3.4.5586.9772 A Privilege Escalation vulnerability exists in the unquoted Service Binary in SDPAgent or SDBAgent in Safend Data Protector Agent 3.4.5586.9772, which could let a local malicious user obtain privileges. | 7.8 |
| 2020-01-13 | CVE-2012-4760 | Improper Privilege Management vulnerability in Safend Data Protector Agent 3.4.5586.9772 A Privilege Escalation vulnerability exists in the SDBagent service in Safend Data Protector Agent 3.4.5586.9772, which could let a local malicious user obtain privileges. | 7.8 |
| 2020-01-13 | CVE-2020-6949 | Improper Privilege Management vulnerability in Hashbrowncms Hashbrown CMS A privilege escalation issue was discovered in the postUser function in HashBrown CMS through 1.3.3. | 8.8 |