Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-19 | CVE-2020-24630 | Improper Privilege Management vulnerability in HP Intelligent Management Center A remote operatoronlinelist_content privilege escalation vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). | 9.0 |
| 2020-10-16 | CVE-2020-16940 | Improper Privilege Management vulnerability in Microsoft products <p>An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. | 7.8 |
| 2020-10-16 | CVE-2020-16902 | Improper Privilege Management vulnerability in Microsoft products <p>An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.</p> <p>A locally authenticated attacker could run arbitrary code with elevated system privileges. | 7.8 |
| 2020-10-15 | CVE-2020-7334 | Improper Privilege Management vulnerability in Mcafee Application and Change Control Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) prior to 8.3.2 allows local administrators to change or update the configuration settings via a carefully constructed MSI configured to mimic the genuine installer. | 8.2 |
| 2020-10-14 | CVE-2020-7330 | Improper Privilege Management vulnerability in Mcafee Total Protection 4.0.161.1 Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial prior to 4.0.176.1 allows local users to schedule tasks which call malicious software to execute with elevated privileges via editing of environment variables | 8.8 |
| 2020-10-13 | CVE-2020-15797 | Improper Privilege Management vulnerability in Siemens DCA Vantage Analyzer Firmware A vulnerability has been identified in DCA Vantage Analyzer (All versions < V4.5 are affected by CVE-2020-7590. | 7.2 |
| 2020-10-08 | CVE-2020-26894 | Improper Privilege Management vulnerability in the NEW Millennium 18.0.160 LiveCode v9.6.1 on Windows allows local, low-privileged users to gain privileges by creating a malicious "cmd.exe" in the folder of the vulnerable LiveCode application. | 4.6 |
| 2020-10-07 | CVE-2020-26880 | Improper Privilege Management vulnerability in multiple products Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable. | 7.8 |
| 2020-10-06 | CVE-2020-26607 | Improper Privilege Management vulnerability in Google Android An issue was discovered in TimaService on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. | 7.5 |
| 2020-10-06 | CVE-2020-26604 | Improper Privilege Management vulnerability in Google Android An issue was discovered in SystemUI on Samsung mobile devices with O(8.x), P(9.0), Q(10.0), and R(11.0) software. | 5.0 |