Fallos del tipo CWE-269
1785 resultadosCVE-2022-33962MEDIUMBIG-IP iRule vulnerability CVE-2022-33962EPSS 0.2%CVE-2024-25088HIGHImproper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate privileges and execute arbitrary code.EPSS 0.2%CVE-2024-22106HIGHImproper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate privileges, execute arbitrary code, or cauEPSS 0.2%CVE-2024-21807CRITICALImproper initialization in the Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may EPSS 0.2%CVE-2026-12450MEDIUMInappropriate implementation in Media in Google Chrome prior to 149.0.7827.155 allowed a remote attacker to obtain potentially sensitive infEPSS 0.2%CVE-2023-0221MEDIUMProduct security bypass vulnerability in ACC prior to version 8.3.4 allows a locally logged-in attacker with administrator privileges to bypEPSS 0.2%CVE-2024-27357MEDIUMAn issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements Client Security through 23.x for macOS, andEPSS 0.2%CVE-2022-27840MEDIUMImproper access control vulnerability in SamsungRecovery prior to version 8.1.43.0 allows local attckers to delete arbitrary files as SamsunEPSS 0.2%CVE-2023-42952MEDIUMThe issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.3, macOS Sonoma 14.1, macOEPSS 0.2%CVE-2025-50674HIGHAn issue was discovered in the changePassword method in file /usr/share/php/openmediavault/system/user.inc in OpenMediaVault 7.4.17 allowingEPSS 0.2%CVE-2025-62592MEDIUMVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.EPSS 0.2%CVE-2021-31839MEDIUMIncorrect permissions on McAfee Agent for Windows event folderEPSS 0.2%CVE-2024-34332HIGHAn issue in SiSoftware SANDRA v31.66 (SANDRA.sys 15.18.1.1) and before allows an attacker to escalate privileges via a crafted buffer sent tEPSS 0.2%CVE-2022-48226HIGHAn issue was discovered in Acuant AcuFill SDK before 10.22.02.03. During installation, an EXE gets executed out of C:\Windows\Temp. A standaEPSS 0.2%CVE-2026-8327MEDIUMConcrete CMS below 9.5.0 and below is vulnerable to password change without reauthorization and session-hardening bypass.EPSS 0.2%CVE-2024-44147HIGHThis issue was addressed through improved state management. This issue is fixed in iOS 18 and iPadOS 18. An app may gain unauthorized accessEPSS 0.2%CVE-2025-50124HIGHA
CWE-269: Improper Privilege Management vulnerability exists that could cause privilege escalation when the
server is accessed by a prEPSS 0.2%CVE-2025-53914HIGHCalix GigaCenter ONT (Broadcom SoC) - Excessive PrivilegesEPSS 0.2%CVE-2022-3369HIGHImproper handling of registry symbolic links in Bitdefender EnginesEPSS 0.2%CVE-2023-22023HIGHVulnerability in the Oracle Solaris product of Oracle Systems (component: Device Driver Interface). The supported version that is affectedEPSS 0.2%