Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2017-18885 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 9.8 |
| 2020-06-19 | CVE-2017-18884 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 8.1 |
| 2020-06-19 | CVE-2019-20886 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0. | 7.5 |
| 2020-06-18 | CVE-2020-9225 | Improper Privilege Management vulnerability in Huawei Fusionsphere Openstack 6.5.1 FusionSphere OpenStack 6.5.1 have an improper permissions management vulnerability. | 7.8 |
| 2020-06-16 | CVE-2020-7509 | Improper Privilege Management vulnerability in Schneider-Electric Easergy T300 Firmware 1.5.2 A CWE-269: Improper privilege management (write) vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an attacker to elevate their privileges and delete files. | 7.2 |
| 2020-06-11 | CVE-2020-13854 | Improper Privilege Management vulnerability in Pandorafms Pandora FMS 7.44 Artica Pandora FMS 7.44 allows privilege escalation. | 9.8 |
| 2020-06-11 | CVE-2020-12850 | Improper Privilege Management vulnerability in Pydio Cells 2.0.4 The following vulnerability applies only to the Pydio Cells Enterprise OVF version 2.0.4. | 7.0 |
| 2020-06-11 | CVE-2020-12713 | Improper Privilege Management vulnerability in Ciphermail Gateway and Webmail Messenger An issue was discovered in CipherMail Community Gateway and Professional/Enterprise Gateway 1.0.1 through 4.7.1-0 and CipherMail Webmail Messenger 1.1.1 through 3.1.1-0. | 7.2 |
| 2020-06-10 | CVE-2020-12757 | Improper Privilege Management vulnerability in Hashicorp Vault 1.4.0/1.4.1 HashiCorp Vault and Vault Enterprise 1.4.0 and 1.4.1, when configured with the GCP Secrets Engine, may incorrectly generate GCP Credentials with the default time-to-live lease duration instead of the engine-configured setting. | 9.8 |
| 2020-06-10 | CVE-2020-7280 | Improper Privilege Management vulnerability in Mcafee Virusscan Enterprise 8.8 Privilege Escalation vulnerability during daily DAT updates when using McAfee Virus Scan Enterprise (VSE) prior to 8.8 Patch 15 allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links. | 7.8 |