Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-09 | CVE-2019-6996 | Improper Privilege Management vulnerability in Gitlab An issue was discovered in GitLab Enterprise Edition 10.x (starting in 10.6) and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. | 4.3 |
| 2019-09-09 | CVE-2019-6794 | Improper Privilege Management vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. | 4.3 |
| 2019-09-09 | CVE-2019-6789 | Improper Privilege Management vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. | 4.3 |
| 2019-09-09 | CVE-2018-21013 | Improper Privilege Management vulnerability in Upperthemes Swape 1.1/1.2 The Swape theme before 1.2.1 for WordPress has incorrect access control, as demonstrated by allowing new administrator accounts via vectors involving xmlPath to wp-admin/admin-ajax.php. | 9.8 |
| 2019-09-06 | CVE-2019-9443 | Improper Privilege Management vulnerability in Google Android In the Android kernel in the vl53L0 driver there is a possible out of bounds write due to a permissions bypass. | 6.7 |
| 2019-09-05 | CVE-2019-1939 | Improper Privilege Management vulnerability in Cisco Webex Teams 3.0.4533 A vulnerability in the Cisco Webex Teams client for Windows could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected system. | 8.8 |
| 2019-08-29 | CVE-2019-4536 | Improper Privilege Management vulnerability in IBM I 7.4 IBM i 7.4 users who have done a Restore User Profile (RSTUSRPRF) on a system which has been configured with Db2 Mirror for i might have user profiles with elevated privileges caused by incorrect processing during a restore of multiple user profiles. | 6.3 |
| 2019-08-28 | CVE-2019-15720 | Improper Privilege Management vulnerability in Cloudberrylab Backup 6.1.2.34 CloudBerry Backup v6.1.2.34 allows local privilege escalation via a Pre or Post backup action. | 7.8 |
| 2019-08-26 | CVE-2019-4448 | Improper Privilege Management vulnerability in IBM DB2 High Performance Unload Load 6.1/6.1.0.1/6.1.0.2 IBM DB2 High Performance Unload load for LUW 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and 6.1.0.1 IF2 db2hpum and db2hpum_debug binaries are setuid root and have built-in options that allow an low privileged user the ability to load arbitrary db2 libraries from a privileged context. | 7.8 |
| 2019-08-21 | CVE-2019-11551 | Improper Privilege Management vulnerability in Code42 products In Code42 Enterprise and Crashplan for Small Business through Client version 6.9.1, an attacker can craft a restore request to restore a file through the Code42 app to a location they do not have privileges to write. | 5.5 |