Vulnerabilities > Permissions, Privileges, and Access Controls
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-29 | CVE-2016-2246 | Permissions, Privileges, and Access Controls vulnerability in HP Thinpro HP ThinPro 4.4 through 6.1 mishandles the keyboard layout control panel and virtual keyboard application, which allows local users to bypass intended access restrictions and gain privileges via unspecified vectors. | 7.8 |
| 2016-12-28 | CVE-2016-6787 | Permissions, Privileges, and Access Controls vulnerability in Linux Kernel kernel/events/core.c in the performance subsystem in the Linux kernel before 4.0 mismanages locks during certain migrations, which allows local users to gain privileges via a crafted application, aka Android internal bug 31095224. | 7.0 |
| 2016-12-28 | CVE-2016-6786 | Permissions, Privileges, and Access Controls vulnerability in Linux Kernel kernel/events/core.c in the performance subsystem in the Linux kernel before 4.0 mismanages locks during certain migrations, which allows local users to gain privileges via a crafted application, aka Android internal bug 30955111. | 7.0 |
| 2016-12-27 | CVE-2016-10072 | Permissions, Privileges, and Access Controls vulnerability in Wampserver 3.0.6 WampServer 3.0.6 has two files called 'wampmanager.exe' and 'unins000.exe' with a weak ACL for Modify. | 7.5 |
| 2016-12-27 | CVE-2016-10031 | Permissions, Privileges, and Access Controls vulnerability in Wampserver 3.0.6 WampServer 3.0.6 installs two services called 'wampapache' and 'wampmysqld' with weak file permissions, running with SYSTEM privileges. | 7.5 |
| 2016-12-26 | CVE-2016-9223 | Permissions, Privileges, and Access Controls vulnerability in Cisco Cloudcenter Orchestrator A vulnerability in the Docker Engine configuration of Cisco CloudCenter Orchestrator (CCO; formerly CliQr) could allow an unauthenticated, remote attacker to install Docker containers with high privileges on the affected system. | 9.8 |
| 2016-12-25 | CVE-2016-10041 | Permissions, Privileges, and Access Controls vulnerability in Sprecher-Automation Sprecon-E Service Program 3.42 An issue was discovered in Sprecher Automation SPRECON-E Service Program before 3.43 SP0. | 7.5 |
| 2016-12-20 | CVE-2016-7271 | Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows 10 and Windows Server 2016 The Secure Kernel Mode implementation in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to bypass the virtual trust level (VTL) protection mechanism via a crafted application, aka "Secure Kernel Mode Elevation of Privilege Vulnerability." | 7.8 |
| 2016-12-20 | CVE-2016-7260 | Permissions, Privileges, and Access Controls vulnerability in Microsoft products The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." | 7.8 |
| 2016-12-16 | CVE-2016-9837 | Permissions, Privileges, and Access Controls vulnerability in Joomla Joomla! An issue was discovered in templates/beez3/html/com_content/article/default.php in Joomla! before 3.6.5. | 7.5 |