Fallos del tipo CWE-269

1783 resultados
CVE-2024-41228HIGHA symlink following vulnerability in the pouch cp function of AliyunContainerService pouch v1.3.1 allows attackers to escalate privileges anEPSS 0.3%CVE-2025-8660MEDIUMPrivilege Escalation in Symantec PGP Encryption 11.0.1EPSS 0.3%CVE-2025-26705MEDIUMImproper Privilege Management vulnerability in ZTE GoldenDB allows Privilege Escalation.This issue affects GoldenDB: from 6.1.03 through 6.1EPSS 0.3%CVE-2024-23276HIGHA logic issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An EPSS 0.3%CVE-2026-30269CRITICALImproper access control in Doorman v0.1.0 and v1.0.2 allows any authenticated user to update their own account role to a non-admin privilegeEPSS 0.3%CVE-2025-6366HIGHEvent List <= 2.0.4 - Authenticated (Subscriber+) Privilege EscalationEPSS 0.3%CVE-2025-45737MEDIUMAn issue in NetEase (Hangzhou) Network Co., Ltd NeacSafe64 Driver before v1.0.0.8 allows attackers to escalate privileges via sending crafteEPSS 0.3%CVE-2020-3595HIGHCisco SD-WAN Software Privilege Escalation VulnerabilityEPSS 0.3%CVE-2020-3593HIGHCisco SD-WAN Software Privilege Escalation VulnerabilityEPSS 0.3%CVE-2022-38775HIGHAn issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate thEPSS 0.3%CVE-2020-3594HIGHCisco SD-WAN Software Privilege Escalation VulnerabilityEPSS 0.3%CVE-2025-11168HIGHMementor Core <= 2.2.5 - Authenticated (Subscriber+) Privilege EscalationEPSS 0.3%CVE-2019-3585HIGHVSE Escalation of Privileges through Alert pop-up windowEPSS 0.3%CVE-2026-8787HIGHFirebase Support & Chat Management <= 3.1.1 - Missing Authorization to Authenticated (Subscriber+) Privilege EscalationEPSS 0.3%CVE-2020-3600HIGHCisco SD-WAN Software Privilege Escalation VulnerabilityEPSS 0.3%CVE-2026-2782HIGHPrivilege escalation in the Netmonitor componentEPSS 0.3%CVE-2023-23429MEDIUM Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptEPSS 0.3%CVE-2024-9471MEDIUMPAN-OS: Privilege Escalation (PE) Vulnerability in XML APIEPSS 0.3%CVE-2022-43308HIGHINTELBRAS SG 2404 MR 20180928-rel64938 allows authenticated attackers to arbitrarily create Administrator accounts via crafted user cookies.EPSS 0.3%CVE-2018-10502This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Galaxy Apps Fixed in version 4.2.18.EPSS 0.3%