Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-29 | CVE-2019-4546 | Improper Privilege Management vulnerability in IBM products After installing the IBM Maximo Health- Safety and Environment Manager 7.6.1, a user is granted additional privileges that they are not normally allowed to access. | 8.8 |
| 2019-10-28 | CVE-2019-16897 | Improper Privilege Management vulnerability in K7Computing products In K7 Antivirus Premium 16.0.xxx through 16.0.0120; K7 Total Security 16.0.xxx through 16.0.0120; and K7 Ultimate Security 16.0.xxx through 16.0.0120, the module K7TSHlpr.dll improperly validates the administrative privileges of the user, allowing arbitrary registry writes in the K7AVOptn.dll module to facilitate escalation of privileges via inter-process communication with a service process. | 9.8 |
| 2019-10-21 | CVE-2019-10716 | Improper Privilege Management vulnerability in Verodin Director 3.5.3.1 An Information Disclosure issue in Verodin Director 3.5.3.1 and earlier reveals usernames and passwords of integrated security technologies via a /integrations.json JSON REST API request. | 7.7 |
| 2019-10-18 | CVE-2019-15901 | Improper Privilege Management vulnerability in Doas Project Doas An issue was discovered in slicer69 doas before 6.2 on certain platforms other than OpenBSD. | 8.8 |
| 2019-10-17 | CVE-2019-17631 | Improper Privilege Management vulnerability in multiple products From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such as causing a GC or creating a diagnostic file are permitted without any privilege checks. | 9.1 |
| 2019-10-14 | CVE-2019-16519 | Improper Privilege Management vulnerability in Eset products ESET Cyber Security 6.7.900.0 for macOS allows a local attacker to execute unauthorized commands as root by abusing an undocumented feature in scheduled tasks. | 7.8 |
| 2019-10-14 | CVE-2019-9745 | Improper Privilege Management vulnerability in Cloudcti HIP Integrator Recognition Configuration Tool CloudCTI HIP Integrator Recognition Configuration Tool allows privilege escalation via its EXQUISE integration. | 7.8 |
| 2019-10-14 | CVE-2019-14838 | Improper Privilege Management vulnerability in Redhat products A flaw was found in wildfly-core before 7.2.5.GA. | 4.9 |
| 2019-10-08 | CVE-2018-21025 | Improper Privilege Management vulnerability in Centreon VM 19.04.2/19.04.3 In Centreon VM through 19.04.3, centreon-backup.pl allows attackers to become root via a crafted script, due to incorrect rights of sourced configuration files. | 9.8 |
| 2019-10-07 | CVE-2019-15747 | Improper Privilege Management vulnerability in Sitos SIX 6.2.1 SITOS six Build v6.2.1 allows a user with the user role of Seminar Coordinator to escalate their permission to the Systemadministrator role due to insufficient checks on the server side. | 8.8 |