Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-13 | CVE-2019-2193 | Improper Privilege Management vulnerability in Google Android In WelcomeActivity.java and related files, there is a possible permissions bypass due to a partially provisioned Device Policy Client. | 7.8 |
| 2019-11-12 | CVE-2019-1388 | Improper Privilege Management vulnerability in Microsoft products An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows Certificate Dialog Elevation of Privilege Vulnerability'. | 7.8 |
| 2019-11-09 | CVE-2019-18845 | Improper Privilege Management vulnerability in Patriotmemory Viper RGB Firmware 1.0 The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1 allow local users (including low integrity processes) to read and write to arbitrary memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges, by mapping \Device\PhysicalMemory into the calling process via ZwOpenSection and ZwMapViewOfSection. | 7.1 |
| 2019-11-08 | CVE-2019-18623 | Improper Privilege Management vulnerability in Energycap Escalation of privileges in EnergyCAP 7 through 7.5.6 allows an attacker to access data. | 9.8 |
| 2019-11-06 | CVE-2006-4243 | Improper Privilege Management vulnerability in Linux-Vserver 1.9.0 linux vserver 2.6 before 2.6.17 suffers from privilege escalation in remount code. | 9.8 |
| 2019-11-04 | CVE-2013-4251 | Improper Privilege Management vulnerability in multiple products The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. | 7.8 |
| 2019-10-31 | CVE-2013-2012 | Improper Privilege Management vulnerability in multiple products autojump before 21.5.8 allows local users to gain privileges via a Trojan horse custom_install directory in the current working directory. | 7.3 |
| 2019-10-31 | CVE-2019-18365 | Improper Privilege Management vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2019.1.4, reverse tabnabbing was possible on several pages. | 4.3 |
| 2019-10-31 | CVE-2019-18425 | Improper Privilege Management vulnerability in multiple products An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. | 9.8 |
| 2019-10-29 | CVE-2018-18931 | Improper Privilege Management vulnerability in Trms Carousel Digital Signage 7.0.4.104 An issue was discovered in the Tightrope Media Carousel digital signage product 7.0.4.104. | 8.8 |