Falhas do tipo CWE-269

1.781 resultados
CVE-2022-48019HIGHThe components wfshbr64.sys and wfshbr32.sys in Another Eden before v3.0.20 and before v2.14.200 allows attackers to perform privilege escalEPSS 0.3%CVE-2026-46716CRITICALNezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cronEPSS 0.3%CVE-2025-28400MEDIUMAn issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the postID parameter in the edit methodEPSS 0.3%CVE-2025-3418HIGHWPC Admin Columns 2.0.6 - 2.1.0 - Authenticated (Subscriber+) Privilege Escalation via User Meta UpdateEPSS 0.3%CVE-2025-59514HIGHMicrosoft Streaming Service Proxy Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2023-50267MEDIUMMeterSphere horizontal privilege escalation vulnerability of resources in project scope.EPSS 0.3%CVE-2024-53706HIGHA vulnerability in the Gen7 SonicOS Cloud platform NSv, allows a remote authenticated local low-privileged attacker to elevate privileges toEPSS 0.3%CVE-2022-24927MEDIUMImproper privilege management vulnerability in Samsung Video Player prior to version 7.3.15.30 allows attackers to execute video files withoEPSS 0.3%CVE-2026-42844HIGHGrav: Low-privileged API users can create super-admin accounts via blueprint-uploadEPSS 0.3%CVE-2025-13618CRITICALMentoring <= 1.2.8 - Unauthenticated Privilege Escalation in mentoring_process_registrationEPSS 0.3%CVE-2024-13376HIGHIndustrial <= 1.7.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options UpdateEPSS 0.3%CVE-2020-16122HIGHPackagekit's apt backend lets user install untrusted local packagesEPSS 0.3%CVE-2024-28197HIGHAccount Takeover via Session Fixation in Zitadel [Bypassing MFA]EPSS 0.3%CVE-2024-25086HIGHImproper privilege management in Jungo WinDriver before 12.2.0 allows local attackers to escalate privileges and execute arbitrary code.EPSS 0.3%CVE-2022-32819HIGHA logic issue was addressed with improved state management. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8EPSS 0.3%CVE-2025-24805HIGHLocal Privilege Escalation in MobSFEPSS 0.3%CVE-2024-56335HIGHPrivilege escalation allows organization groups to be updated/deleted if their UUID is known in vaultwardenEPSS 0.3%CVE-2024-2297HIGHBricksbuilder <= 1.9.6.1 - Authenticated (Contributor+) Privilege Escalation via create_autosaveEPSS 0.3%CVE-2021-27765MEDIUMHCL BigFix Platform Server API is affected by Privilege Escalation VulnerabilityEPSS 0.3%CVE-2026-26722CRITICALAn issue in Key Systems Inc Global Facilities Management Software v.20230721a allows a remote attacker to escalate privileges via PIN componEPSS 0.3%