Falhas do tipo CWE-269

1.785 resultados
CVE-2026-7971MEDIUMInappropriate implementation in ORB in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to bypass site isolation via a craftedEPSS 0.2%CVE-2024-7890MEDIUMLocal privilege escalation allows a low-privileged user to gain SYSTEM privilegesEPSS 0.2%CVE-2024-6326LOWRockwell Automation Unsecured Private Keys in FactoryTalk® System ServicesEPSS 0.2%CVE-2025-55076MEDIUMA local privilege escalation vulnerability exists in the InstallationHelper service included with Plugin Alliance Installation Manager v1.4.EPSS 0.2%CVE-2026-36213HIGHAn issue in Microvirt MEmu Android Emulator 9.2.7.0 allows a local attacker to escalate privileges via the MemuService.exe component.EPSS 0.2%CVE-2025-61759MEDIUMVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.EPSS 0.2%CVE-2024-33393MEDIUMAn issue in spidernet-io spiderpool v.0.9.3 and before allows a local attacker to execute arbitrary code via a crafted command to get the toEPSS 0.2%CVE-2023-44219A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows aEPSS 0.2%CVE-2026-12313MEDIUMInformation disclosure, sandbox escape in the Security: Process Sandboxing componentEPSS 0.2%CVE-2023-41138HIGHThe AppsAnywhere macOS client-privileged helper can be tricked into executing arbitrary commands with elevated permissions by a local user pEPSS 0.2%CVE-2026-11296HIGHInappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the rendeEPSS 0.2%CVE-2025-36630HIGHLocal Privilege EscalationEPSS 0.2%CVE-2021-42082HIGHLocal Privilege Escalation to root in OSNEXUS QuantaStor before 6.0.0.355EPSS 0.2%CVE-2022-21827An improper privilege vulnerability has been discovered in Citrix Gateway Plug-in for Windows (Citrix Secure Access for Windows) <21.9.1.2 wEPSS 0.2%CVE-2024-23764MEDIUMCertain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15 and later, WithSecure Server SecuriEPSS 0.2%CVE-2025-27847MEDIUMIn ESPEC North America Web Controller 3 before 3.3.8, /api/v4/auth/ users session privileges are not revoked on logout.EPSS 0.2%CVE-2025-27846MEDIUMIn ESPEC North America Web Controller 3 before 3.3.8, an attacker with physical access can gain elevated privileges because GRUB and the BIOEPSS 0.2%CVE-2021-3439HIGHHP has identified a potential vulnerability in BIOS firmware of some Workstation products. Firmware updates are being released to mitigate tEPSS 0.2%CVE-2023-5993HIGHPrivilege Escalation in SafeNet Authentication Client InstallerEPSS 0.2%CVE-2022-41975HIGHRealVNC VNC Server before 6.11.0 and VNC Viewer before 6.22.826 on Windows allow local privilege escalation via MSI installer Repair mode.EPSS 0.2%