Weaknesses of type CWE-269
1,775 resultsCVE-2022-48365HIGHAn issue was discovered in eZ Platform Ibexa Kernel before 1.3.26. The Company admin role gives excessive privileges.EPSS 0.9%CVE-2024-37726MEDIUMInsecure Permissions vulnerability in Micro-Star International Co., Ltd MSI Center v.2.0.36.0 allows a local attacker to escalate privilegesEPSS 0.9%CVE-2017-9940—A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that could allow an attacker with access to a low-prEPSS 0.9%CVE-2023-34465CRITICALXWiki Platform's Mail.MailConfig can be edited by any user with edit rightsEPSS 0.9%CVE-2020-12519HIGHPhoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An attacker can use this vulnerability i.e. to open a reverse shell with root privileges.EPSS 0.9%CVE-2023-44809—D-Link device DIR-820L 1.05B03 is vulnerable to Insecure Permissions.EPSS 0.9%CVE-2021-31937HIGHMicrosoft Edge (Chromium-based) Elevation of Privilege VulnerabilityEPSS 0.9%CVE-2018-25040MEDIUMuTorrent Web HTTP RPC Server privileges managementEPSS 0.8%CVE-2024-33894HIGHInsecure Permission vulnerability in Cosy+ devices running a firmware 21.x below 21.2s10 or a firmware 22.x below 22.1s3 are executing severEPSS 0.8%CVE-2021-31350HIGHJunos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET)EPSS 0.8%CVE-2022-29164HIGHPrivilege Escalation in argo-workflowsEPSS 0.8%CVE-2021-36784HIGHPrivilege escalation for users with create/update permissions in Global RolesEPSS 0.8%CVE-2022-38757HIGHCVE-2022-38757 ZENworksEPSS 0.8%CVE-2020-12528MEDIUMAn issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. Improper use of access valEPSS 0.8%CVE-2022-26668HIGHASUS Control Center - Broken Access ControlEPSS 0.8%CVE-2023-45581HIGHAn improper privilege management vulnerability [CWE-269] in Fortinet FortiClientEMS version 7.2.0 through 7.2.2 and before 7.0.10 allows an EPSS 0.8%CVE-2023-0101HIGHA privilege escalation vulnerability was identified in Nessus versions 8.10.1 through 8.15.8 and 10.0.0 through 10.4.1. An authenticated attEPSS 0.8%CVE-2021-27661HIGHFacility ExplorerEPSS 0.8%CVE-2025-47955HIGHWindows Remote Access Connection Manager Elevation of Privilege VulnerabilityEPSS 0.8%CVE-2017-20023MEDIUMSolare Solar-Log Network Config privileges managementEPSS 0.8%