Weaknesses of type CWE-250
329 resultsCVE-2024-28005MEDIUMAterm WG1800HP4, WG1200HS3, WG1900HP2, WG1200HP3, WG1800HP3, WG1200HS2, WG1900HP, WG1200HP2, W1200EX(-MS), WG1200HS, WG1200HP, WF300HP2, W30EPSS 0.5%CVE-2025-6949CRITICALAn Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A critical autEPSS 0.5%CVE-2026-27002HIGHOpenClaw: Docker container escape via unvalidated bind mount config injectionEPSS 0.5%CVE-2025-49581HIGHXWiki allows remote code execution through default value of wiki macro wiki-type parametersEPSS 0.5%CVE-2024-8767CRITICALSensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup pluEPSS 0.5%CVE-2019-10145HIGHrkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`. Processes run with `rkt enter` do not havEPSS 0.5%CVE-2026-23742HIGHSkipper arbitrary code execution through lua filtersEPSS 0.5%CVE-2023-4003HIGH One Identity Password Manager version 5.9.7.1 - Unauthenticated physical access privilege escalationEPSS 0.5%CVE-2025-36184HIGHIBM Db2 Privilege EscalationEPSS 0.5%CVE-2019-10144HIGHrkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`. Processes run with `rkt enter` are given EPSS 0.5%CVE-2018-10853HIGHA flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not checkEPSS 0.5%CVE-2024-2240HIGHDocker implementation in Brocade SANnav is missing Audit Rules.EPSS 0.5%CVE-2018-10872MEDIUMA flaw was found in the way the Linux kernel handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. EPSS 0.5%CVE-2019-10147MEDIUMrkt through version 1.30.0 does not isolate processes in containers that are run with `rkt enter`. Processes run with `rkt enter` are not liEPSS 0.5%CVE-2023-43018MEDIUMIBM CICS TX privilege escalationEPSS 0.4%CVE-2023-42954MEDIUMA privilege escalation issue existed in FileMaker Server, potentially exposing sensitive information to front-end websites when signed in toEPSS 0.4%CVE-2024-11821MEDIUMPrivilege Escalation in langgenius/difyEPSS 0.4%CVE-2026-34877CRITICALAn issue was discovered in Mbed TLS versions from 2.19.0 up to 3.6.5, Mbed TLS 4.0.0. Insufficient protection of serialized SSL context or sEPSS 0.4%CVE-2025-6019HIGHLibblockdev: lpe from allow_active to root in libblockdev via udisksEPSS 0.4%CVE-2023-31175HIGHExecution with Unnecessary PrivilegesEPSS 0.4%