Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-08 | CVE-2020-7285 | Improper Privilege Management vulnerability in Mcafee Mvision Endpoint 18.11.31.62 Privilege Escalation vulnerability in McAfee MVISION Endpoint prior to 20.5.0.94 allows a malicious script or program to perform functions that the local executing user has not been granted access to. | 7.8 |
| 2020-05-08 | CVE-2020-7267 | Improper Privilege Management vulnerability in Mcafee Virusscan Enterprise 8.8 Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Linux prior to 2.0.3 Hotfix 2635000 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. | 8.4 |
| 2020-05-08 | CVE-2020-7266 | Improper Privilege Management vulnerability in Mcafee Virusscan Enterprise 1.9.0/1.9.1/2.0.0 Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. | 8.4 |
| 2020-05-08 | CVE-2020-7265 | Improper Privilege Management vulnerability in Mcafee Endpoint Security Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac prior to 10.6.9 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. | 8.4 |
| 2020-05-08 | CVE-2020-7264 | Improper Privilege Management vulnerability in Mcafee Endpoint Security Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. | 8.4 |
| 2020-05-07 | CVE-2020-6652 | Improper Privilege Management vulnerability in Eaton Intelligent Power Manager 1.6/1.67 Incorrect Privilege Assignment vulnerability in Eaton's Intelligent Power Manager (IPM) v1.67 & prior allow non-admin users to upload the system configuration files by sending specially crafted requests. | 7.8 |
| 2020-05-07 | CVE-2020-12689 | Improper Privilege Management vulnerability in multiple products An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. | 8.8 |
| 2020-05-06 | CVE-2019-4266 | Improper Privilege Management vulnerability in IBM Maximo Anywhere IBM Maximo Anywhere 7.6.2.0, 7.6.2.1, 7.6.3.0, and 7.6.3.1 does not have device jailbreak detection which could result in an attacker gaining sensitive information about the device. | 2.4 |
| 2020-04-30 | CVE-2019-19216 | Improper Privilege Management vulnerability in Bmcsoftware Control-M/Agent 7.0.00.000 BMC Control-M/Agent 7.0.00.000 has an Insecure File Copy. | 8.8 |
| 2020-04-28 | CVE-2018-21226 | Improper Privilege Management vulnerability in Netgear products Certain NETGEAR devices are affected by authentication bypass. | 8.8 |