Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-31 | CVE-2019-18425 | Improper Privilege Management vulnerability in multiple products An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. | 9.8 |
| 2019-10-29 | CVE-2018-18931 | Improper Privilege Management vulnerability in Trms Carousel Digital Signage 7.0.4.104 An issue was discovered in the Tightrope Media Carousel digital signage product 7.0.4.104. | 8.8 |
| 2019-10-29 | CVE-2019-4546 | Improper Privilege Management vulnerability in IBM products After installing the IBM Maximo Health- Safety and Environment Manager 7.6.1, a user is granted additional privileges that they are not normally allowed to access. | 8.8 |
| 2019-10-28 | CVE-2019-16897 | Improper Privilege Management vulnerability in K7Computing products In K7 Antivirus Premium 16.0.xxx through 16.0.0120; K7 Total Security 16.0.xxx through 16.0.0120; and K7 Ultimate Security 16.0.xxx through 16.0.0120, the module K7TSHlpr.dll improperly validates the administrative privileges of the user, allowing arbitrary registry writes in the K7AVOptn.dll module to facilitate escalation of privileges via inter-process communication with a service process. | 9.8 |
| 2019-10-21 | CVE-2019-10716 | Improper Privilege Management vulnerability in Verodin Director 3.5.3.1 An Information Disclosure issue in Verodin Director 3.5.3.1 and earlier reveals usernames and passwords of integrated security technologies via a /integrations.json JSON REST API request. | 7.7 |
| 2019-10-18 | CVE-2019-15901 | Improper Privilege Management vulnerability in Doas Project Doas An issue was discovered in slicer69 doas before 6.2 on certain platforms other than OpenBSD. | 8.8 |
| 2019-10-17 | CVE-2019-17631 | Improper Privilege Management vulnerability in multiple products From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such as causing a GC or creating a diagnostic file are permitted without any privilege checks. | 9.1 |
| 2019-10-14 | CVE-2019-16519 | Improper Privilege Management vulnerability in Eset products ESET Cyber Security 6.7.900.0 for macOS allows a local attacker to execute unauthorized commands as root by abusing an undocumented feature in scheduled tasks. | 7.8 |
| 2019-10-14 | CVE-2019-9745 | Improper Privilege Management vulnerability in Cloudcti HIP Integrator Recognition Configuration Tool CloudCTI HIP Integrator Recognition Configuration Tool allows privilege escalation via its EXQUISE integration. | 7.8 |
| 2019-10-14 | CVE-2019-14838 | Improper Privilege Management vulnerability in Redhat products A flaw was found in wildfly-core before 7.2.5.GA. | 4.9 |