Vulnerabilities > Improper Privilege Management
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-23 | CVE-2019-18899 | Improper Privilege Management vulnerability in multiple products The apt-cacher-ng package of openSUSE Leap 15.1 runs operations in user owned directory /run/apt-cacher-ng with root privileges. | 5.5 |
| 2020-01-23 | CVE-2019-17202 | Improper Privilege Management vulnerability in Fasttracksoftware Admin BY Request FastTrack Admin By Request 6.1.0.0 supports group policies that are supposed to allow only a select range of users to elevate to Administrator privilege at will. | 7.8 |
| 2020-01-23 | CVE-2013-6773 | Improper Privilege Management vulnerability in Splunk Splunk 5.0.3 has an Unquoted Service Path in Windows for Universal Forwarder which can allow an attacker to escalate privileges | 7.8 |
| 2020-01-22 | CVE-2018-16272 | Improper Privilege Management vulnerability in Samsung products The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. | 9.8 |
| 2020-01-22 | CVE-2018-16271 | Improper Privilege Management vulnerability in Samsung products The wemail_consumer_service (from the built-in application wemail) in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox, due to improper D-Bus security policy configurations. | 6.5 |
| 2020-01-22 | CVE-2018-16270 | Improper Privilege Management vulnerability in Samsung products Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. | 7.5 |
| 2020-01-22 | CVE-2018-16268 | Improper Privilege Management vulnerability in Linux Tizen The SoundServer/FocusServer system services in Tizen allow an unprivileged process to perform media-related system actions, due to improper D-Bus security policy configurations. | 4.3 |
| 2020-01-22 | CVE-2018-16267 | Improper Privilege Management vulnerability in Linux Tizen The system-popup system service in Tizen allows an unprivileged process to perform popup-related system actions, due to improper D-Bus security policy configurations. | 8.1 |
| 2020-01-22 | CVE-2018-16266 | Improper Privilege Management vulnerability in Linux Tizen The Enlightenment system service in Tizen allows an unprivileged process to fully control or capture windows, due to improper D-Bus security policy configurations. | 8.1 |
| 2020-01-22 | CVE-2018-16265 | Improper Privilege Management vulnerability in Linux Tizen The bt/bt_core system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. | 6.5 |