Falhas do tipo CWE-269
1.780 resultadosCVE-2023-52209HIGHWordPress WPForms User Registration plugin <= 2.1.0 - Authenticated Privilege Escalation vulnerabilityEPSS 0.3%CVE-2025-9966HIGHExecution with Unnecessary PrivilegesEPSS 0.3%CVE-2023-43663MEDIUMImproper Privilege Management in PrestashopEPSS 0.3%CVE-2023-41036HIGHMacvim's Insecure Usage of IPC MechanismsEPSS 0.3%CVE-2026-46899CRITICALVulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite (component: Core). Supported versions thEPSS 0.3%CVE-2025-70887HIGHAn issue in ralphje Signify before v.0.9.2 allows a remote attacker to escalate privileges via the signed_data.py and the context.py componeEPSS 0.3%CVE-2023-23412HIGHWindows Accounts Picture Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2024-46916HIGHDiebold Nixdorf Vynamic Security Suite through 4.3.0 SR06 contains functionality that allows the removal of critical system files before theEPSS 0.3%CVE-2022-0556HIGHA local privilege escalation vulnerability caused by incorrect permission assignment in some directories of the Zyxel AP Configurator (ZAC) EPSS 0.3%CVE-2025-53003HIGHJanssen Config API returns results without scope verificationEPSS 0.3%CVE-2020-3393MEDIUMCisco IOS XE Software IOx Application Hosting Privilege Escalation VulnerabilityEPSS 0.3%CVE-2021-23891HIGHPrivilege Escalation vulnerability in McAfee Total Protection (MTP)EPSS 0.3%CVE-2023-23427MEDIUM
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptEPSS 0.3%CVE-2024-46549HIGHAn issue in the TP-Link MQTT Broker and API gateway of TP-Link Kasa KP125M v1.0.3 allows attackers to establish connections by impersonatingEPSS 0.3%CVE-2023-7016HIGHPrivilege Escalation in SafeNet Authentication Client EPSS 0.3%CVE-2025-3105HIGHVehica Core <= 1.0.97 - Authenticated (Subscriber+) Privilege EscalationEPSS 0.3%CVE-2023-28640MEDIUMPermissions bypass in Apiman could enable authenticated attacker to unpermitted API KeyEPSS 0.3%CVE-2023-41053LOWRedis SORT_RO may bypass ACL configurationEPSS 0.3%CVE-2026-46716CRITICALNezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cronEPSS 0.3%CVE-2026-2780HIGHPrivilege escalation in the Netmonitor componentEPSS 0.3%