Falhas do tipo CWE-271
12 resultadosCVE-2019-11243LOWIn Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig() method returns a copy of the provided config, with credentials rEPSS 1.5%CVE-2024-0985HIGHPostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY executes arbitrary SQLEPSS 1.5%CVE-2020-35513—A flaw incorrect umask during file or directory modification in the Linux kernel NFS (network file system) functionality was found in the waEPSS 1.3%CVE-2022-3569HIGHDue to an issue with incorrect sudo permissions, Zimbra Collaboration Suite (ZCS) suffers from a local privilege escalation issue in versionEPSS 0.7%CVE-2024-35179MEDIUMUnprivileged Stalwart Mail Server user can read files as rootEPSS 0.6%CVE-2023-22648HIGHA Improper Privilege Management vulnerability in SUSE Rancher causes permission changes in Azure AD not to be reflected to users
while theyEPSS 0.5%CVE-2026-44477CRITICALCloudNativePG: Metrics exporter allows privilege escalation to PostgreSQL superuser and OS RCEEPSS 0.4%CVE-2023-38496MEDIUMApptainer's ineffective privileges drop when requesting container networkEPSS 0.2%CVE-2025-23395HIGHLocal root exploit via `logfile_reopen()` in screen 5.0.0 with setuid-root bit setEPSS 0.2%CVE-2026-35535HIGHIn Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgroups call, during a privilege drop before running the mailerEPSS 0.2%CVE-2025-53819HIGHNix's privilege dropping to build user broke for macOSEPSS 0.1%CVE-2026-25704MEDIUMIncomplete privilege drop for com.system76.CosmicGreeter.GetUserDataEPSS 0.1%