Fallos del tipo CWE-269
1772 resultadosCVE-2017-5689CRITICALAn unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AEPSS 92.2%KEVCVE-2024-21888HIGHA privilege escalation vulnerability in web component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows a useEPSS 86.8%CVE-2022-0441—MasterStudy LMS < 2.7.6 - Unauthenticated Admin Account CreationEPSS 85.3%CVE-2021-20021CRITICALA vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to create an administrative account by sending a craftedEPSS 83.4%KEVCVE-2021-38540—Apache Airflow: Variable Import endpoint missed authentication checkEPSS 80.9%CVE-2021-34621CRITICALProfilePress 3.0 - 3.1.3 - Unauthenticated Privilege EscalationEPSS 68.9%CVE-2023-26475CRITICALXWiki Platform vulnerable to Remote Code Execution in AnnotationsEPSS 64.5%CVE-2016-0151HIGHThe Client-Server Run-time Subsystem (CSRSS) in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold EPSS 63.2%KEVCVE-2020-8655HIGHAn issue was discovered in EyesOfNetwork 5.3. The sudoers configuration is prone to a privilege escalation vulnerability, allowing the apachEPSS 58.1%KEVCVE-2023-22809HIGHIn Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided environment variables (SUDO_EDEPSS 55.4%CVE-2021-43858HIGHUser privilege escalation in MinIOEPSS 35.5%CVE-2024-24747HIGHMinIO unsafe default: Access keys inherit `admin` of root user, allowing privilege escalationEPSS 34.1%CVE-2023-41326HIGHAccount takeover via Kanban feature in GLPIEPSS 31.2%CVE-2019-1405HIGHAn elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creationEPSS 29.9%KEVCVE-2025-34143CRITICALETQ Reliance CG Authentication Bypass via Trailing Space RCEEPSS 29.6%CVE-2020-17103HIGHWindows Cloud Files Mini Filter Driver Elevation of Privilege VulnerabilityEPSS 27.0%CVE-2026-1492CRITICALUser Registration & Membership <= 5.1.2 - Unauthenticated Privilege Escalation via Membership RegistrationEPSS 25.5%CVE-2025-6934CRITICALOpal Estate Pro <= 1.7.5 - Unauthenticated Privilege Escalation via 'on_regiser_user'EPSS 22.3%CVE-2019-1215HIGHAn elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of PrEPSS 19.4%KEVCVE-2023-40289HIGHA command injection issue was discovered on Supermicro X11SSM-F, X11SAE-F, and X11SSE-F 1.66 devices. An attacker can exploit this to elevatEPSS 17.8%