Falhas do tipo CWE-269
1.775 resultadosCVE-2022-3405CRITICALCode execution and sensitive information disclosure due to excessive privileges assigned to Acronis Agent. The following products are affectEPSS 5.3%CVE-2019-25066MEDIUMajenti API privileges managementEPSS 5.2%CVE-2002-0367HIGHsmss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which alEPSS 5.2%KEVCVE-2020-27654CRITICALImproper access control vulnerability in lbd in Synology Router Manager (SRM) before 1.2.4-8081 allows remote attackers to execute arbitraryEPSS 4.6%CVE-2021-26697—Apache Airflow: Lineage API endpoint for Experimental API missed authentication checkEPSS 4.6%CVE-2015-0192CRITICALUnspecified vulnerability in IBM Java 8 before SR1, 7 R1 before SR2 FP11, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 befoEPSS 4.5%CVE-2022-34699HIGHWindows Win32k Elevation of Privilege VulnerabilityEPSS 4.4%CVE-2016-10010HIGHsshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local usEPSS 4.2%CVE-2025-4601HIGHRH - Real Estate WordPress Theme <= 4.4.0 - Authenticated (Subscriber+) Privilege EscalationEPSS 4.2%CVE-2021-34622CRITICALProfilePress 3.0 - 3.1.3 - Authenticated Privilege EscalationEPSS 4.1%CVE-2024-26169HIGHWindows Error Reporting Service Elevation of Privilege VulnerabilityEPSS 4.0%KEVCVE-2024-24409HIGHPrivilege EscalationEPSS 3.9%CVE-2026-21533HIGHWindows Remote Desktop Services Elevation of Privilege VulnerabilityEPSS 3.8%KEVCVE-2022-35761HIGHWindows Kernel Elevation of Privilege VulnerabilityEPSS 3.7%CVE-2014-125001HIGHCardo Systems Scala Rider Q3 Cardo-Updater api privileges managementEPSS 3.4%CVE-2024-24402CRITICALAn issue in Nagios XI 2024R1.01 allows a remote attacker to escalate privileges via a crafted script to the /usr/local/nagios/bin/npcd compoEPSS 3.4%CVE-2025-34187CRITICALIlevia EVE X1/X5 Server 4.7.18.0.eden Reverse RootshellEPSS 3.2%CVE-2014-9193—Innominate mGuard Improper Privilege ManagementEPSS 3.1%CVE-2024-34082HIGHGrav Arbitrary File Read to Account TakeoverEPSS 3.1%CVE-2023-37999CRITICALWordPress HT Mega Absolute Addons for Elementor plugin <= 2.2.0 - Unauthenticated Privilege Escalation vulnerabilityEPSS 3.0%