Falhas do tipo CWE-269

1.782 resultados
CVE-2026-32106MEDIUMStudioCMS: REST API Missing Rank Check Allows Admin to Create Peer Admin AccountsEPSS 0.3%CVE-2026-1566HIGHLatePoint <= 5.2.7 - Authenticated (Agent+) Privilege EscalationEPSS 0.3%CVE-2026-50545CRITICALFission Environment CRD PodSpec Injection Leading to Node Escape and Cluster TakeoverEPSS 0.3%CVE-2025-50065LOWVulnerability in the Oracle GraalVM for JDK product of Oracle Java SE (component: Native Image). The supported version that is affected isEPSS 0.3%CVE-2025-54761HIGHAn issue was discovered in PPress 0.0.9 allowing attackers to gain escilated privlidges via crafted session cookie.EPSS 0.3%CVE-2025-32974CRITICALorg.xwiki.platform:xwiki-platform-security-requiredrights-default required rights analysis doesn't consider TextAreas with default content typeEPSS 0.3%CVE-2024-33500HIGHA vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.11.0), Mendix Applications using Mendix 10 (VEPSS 0.3%CVE-2013-4536An user able to alter the savevm data (either on the disk or over the wire during migration) could use this flaw to to corrupt QEMU process EPSS 0.3%CVE-2026-30874LOWOpenWrt procd PATH Environment Variable Filter Bypass via Incorrect String Comparison Leads to Privilege EscalationEPSS 0.3%CVE-2017-20107MEDIUMShadeYouVPN.com Client privileges managementEPSS 0.3%CVE-2025-12952HIGHPrivilege Escalation in Dialogflow CX via Webhook Admin RoleEPSS 0.3%CVE-2026-31836HIGHMass Assignment Privilege Escalation in CheckmateEPSS 0.3%CVE-2023-20854HIGHVMware Workstation contains an arbitrary file deletion vulnerability. A malicious actor with local user privileges on the victim's machine mEPSS 0.3%CVE-2025-0651MEDIUMFile symlink abuse might lead to deleting files belonging to SYSTEM userEPSS 0.3%CVE-2026-27802HIGHVaultwarden: Privilege Escalation via Bulk Permission Update to Unauthorized Collections by ManagerEPSS 0.3%CVE-2020-7310MEDIUMPrivilege Escalation vulnerability in McAfee Total Protection (MTP) trial installerEPSS 0.3%CVE-2020-26191HIGHDell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability. A user with ISI_PRIV_JOB_ENGINE may use the PEPSS 0.3%CVE-2026-6741HIGHLatePoint <= 5.4.1 - Authenticated (Agent+) Privilege Escalation to Administrator via 'connect-customer-to-wp-user' AbilityEPSS 0.3%CVE-2023-53908HIGHHiSecOS 04.0.01 Privilege Escalation via User Role ModificationEPSS 0.3%CVE-2024-47853HIGHAn issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of privileges in certain cases when logging into MahEPSS 0.3%