Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-16 | CVE-2023-38280 | Improper Privilege Management vulnerability in IBM Hardware Management Console 10.1.1010.0/10.2.1030.0 IBM HMC (Hardware Management Console) 10.1.1010.0 and 10.2.1030.0 could allow a local user to escalate their privileges to root access on a restricted shell. | 7.8 |
| 2023-10-11 | CVE-2023-38817 | Improper Privilege Management vulnerability in Echo Anti Cheat Tool An issue in Inspect Element Ltd Echo.ac v.5.2.1.0 allows a local attacker to gain privileges via a crafted command to the echo_driver.sys component. | 7.8 |
| 2023-10-11 | CVE-2023-43960 | Improper Privilege Management vulnerability in Dlink Dph-400Se Firmware 2.2.15.8 An issue in DLINK DPH-400SE FRU 2.2.15.8 allows a remote attacker to escalate privileges via the User Modify function in the Maintenance/Access function component. | 8.8 |
| 2023-10-11 | CVE-2023-44105 | Improper Privilege Management vulnerability in Huawei Emui and Harmonyos Vulnerability of permissions not being strictly verified in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally. | 9.8 |
| 2023-10-06 | CVE-2023-5214 | Improper Privilege Management vulnerability in Puppet Bolt In Puppet Bolt versions prior to 3.27.4, a path to escalate privileges was identified. | 9.8 |
| 2023-10-04 | CVE-2023-5402 | Improper Privilege Management vulnerability in Schneider-Electric C-Bus Toolkit A CWE-269: Improper Privilege Management vulnerability exists that could cause a remote code execution when the transfer command is used over the network. | 9.8 |
| 2023-10-04 | CVE-2023-20235 | Improper Privilege Management vulnerability in Cisco IOS XE A vulnerability in the on-device application development workflow feature for the Cisco IOx application hosting infrastructure in Cisco IOS XE Software could allow an authenticated, remote attacker to access the underlying operating system as the root user. This vulnerability exists because Docker containers with the privileged runtime option are not blocked when they are in application development mode. | 8.8 |
| 2023-09-28 | CVE-2023-43663 | Improper Privilege Management vulnerability in Prestashop PrestaShop is an Open Source e-commerce web application. | 4.3 |
| 2023-09-28 | CVE-2023-43664 | Improper Privilege Management vulnerability in Prestashop PrestaShop is an Open Source e-commerce web application. | 4.3 |
| 2023-09-28 | CVE-2023-40375 | Improper Privilege Management vulnerability in IBM I Integrated application server for IBM i 7.2, 7.3, 7.4, and 7.5 contains a local privilege escalation vulnerability. | 7.8 |