Falhas do tipo CWE-269
1.785 resultadosCVE-2020-9080HIGHThere is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated attacker could craft a specifiEPSS 0.1%CVE-2026-29123HIGHMultiple SUID Root Binaries in `xd` User Home Directory Leading to Potential Local Privilege EscalationEPSS 0.1%CVE-2024-0674MEDIUMPrivilege escalation vulnerability in Lamassu Bitcoin ATM Douro machinesEPSS 0.1%CVE-2025-57443MEDIUMFrostWire 6.14.0-build-326 for macOS contains permissive entitlements (allow-dyld-environment-variables, disable-library-validation) that alEPSS 0.1%CVE-2025-0320HIGHCitrix Secure Access - Local Privilege escalation allows a low-privileged user to gain SYSTEM privilegesEPSS 0.1%CVE-2025-43722MEDIUMDell PowerScale OneFS, versions prior to 9.12.0.0, contains an improper privilege management vulnerability. A high privileged attacker with EPSS 0.1%CVE-2026-45176HIGHIdira Endpoint Privilege Manager Agent: Local Privilege Escalation via Internal Communication or File Operation ManipulationEPSS 0.1%CVE-2024-57062MEDIUMAn issue in SoundCloud IOS application v.7.65.2 allows a local attacker to escalate privileges and obtain sensitive information via the sessEPSS 0.1%CVE-2023-21114HIGHIn multiple locations, there is a possible permission bypass due to a confused deputy. This could lead to local escalation of privilege withEPSS 0.1%CVE-2026-28995HIGHA logic issue was addressed with improved restrictions. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOSEPSS 0.1%CVE-2023-21113HIGHIn multiple locations, there is a possible permission bypass due to a confused deputy. This could lead to local escalation of privilege withEPSS 0.1%CVE-2025-5028MEDIUMArbitrary file deletion vulnerability in ESET product installersEPSS 0.1%CVE-2026-23772HIGHDell Storage Manager - Replay Manager for Microsoft Servers, version(s) 8.0, contain(s) an Improper Privilege Management vulnerability. A loEPSS 0.1%CVE-2026-44218LOWciguard: Container image runs as root (no USER directive)EPSS 0.1%CVE-2025-49156HIGHA link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalation privileges on affected insEPSS 0.1%CVE-2026-22536HIGHPRIVILEGE ESCALATION VIA SUDO COMMANDEPSS 0.1%CVE-2024-0046HIGHIn installExistingPackageAsUser of InstallPackageHelper.java, there is a possible carrier restriction bypass due to a logic error in the codEPSS 0.1%CVE-2026-21981MEDIUMVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.EPSS 0.1%CVE-2026-29111MEDIUMsystemd: Local unprivileged user can trigger an assertEPSS 0.1%CVE-2025-69257MEDIUMtheshit vulnerable to unsafe loading of user-owned Python rules when running as root.EPSS 0.1%