Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-250 (带着不必要的权限执行) — Vulnerability Class 233

233 vulnerabilities classified as CWE-250 (带着不必要的权限执行). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-4667 HP System Optimizer - Escalation of Privilege — OMEN Gaming Hub 7.8 -2026-04-15
CVE-2026-33793 Junos OS and Junos OS Evolved: When an unsigned Python op script configuration is present, a local low privileged user can compromise the system — Junos OS 7.8 High2026-04-09
CVE-2026-4498 Execution with Unnecessary Privileges in Kibana Leading to reading index data beyond their direct Elasticsearch RBAC scope — Kibana 7.7 High2026-04-08
CVE-2026-1346 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access — Verify Identity Access Container 9.3 Critical2026-04-08
CVE-2026-4606 GeoVision ERM Improper Privilege Assignment Leads to SYSTEM-Level Privilege — GV-Edge Recording Manager 7.8 -2026-03-23
CVE-2025-12690 Local Privilege Escalation in NGFW Engine — NGFW Engine 7.8AIHighAI2026-03-11
CVE-2026-20017 Cisco Secure FTD Software Authenticated Command Injection Vulnerability — Cisco Secure Firewall Threat Defense (FTD) Software 6.0 Medium2026-03-04
CVE-2026-21424 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2026-03-04
CVE-2026-21421 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2026-03-04
CVE-2026-21426 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2026-03-04
CVE-2026-20037 Cisco UCS Manager File Write Vulnerability — Cisco Unified Computing System (Managed) 4.4 Medium2026-02-25
CVE-2026-27002 OpenClaw: Docker container escape via unvalidated bind mount config injection — openclaw 9.6 -2026-02-19
CVE-2025-1790 Genetec Sipelia Plugin 安全漏洞 — Genetec Sipelia 7.8AIHighAI2026-02-13
CVE-2026-25740 Privilege escalation to the `CAP_NET_RAW` capability via the `programs.captive-browser` NixOS module — nixpkgs 8.8AIHighAI2026-02-09
CVE-2026-0870 GIGABYTE|MacroHub - Local Privilege Escalation — MacroHub 7.8 High2026-02-09
CVE-2025-13375 IBM Common Cryptographic Architecture Arbitrary Command Execution — Common Cryptographic Architecture 9.8 Critical2026-02-04
CVE-2026-22549 BIG-IP Container Ingress Services vulnerability — F5 BIG-IP Container Ingress Services 4.9 Medium2026-02-04
CVE-2025-58379 Password Exposure in Brocade Fabric OS — Fabric OS 5.5AIMediumAI2026-02-03
CVE-2025-58383 Privilege escalation via bind command in Brocade Fabric OS — Fabric OS 7.2AIHighAI2026-02-03
CVE-2025-36184 IBM Db2 Privilege Escalation — Db2 for Linux, UNIX and Windows 7.2 High2026-01-30
CVE-2026-1680 Local Privilege Escalation in Local Admin Service — Local Admin Service 7.8AIHighAI2026-01-30
CVE-2025-36059 Multiple security vulnerabilities are addressed in IBM Business Automation Workflow Containers fixes December 2025 — Business Automation Workflow containers 4.7 Medium2026-01-20
CVE-2025-40942 siemens TeleControl Server Basic 安全漏洞 — TeleControl Server Basic 8.8 High2026-01-13
CVE-2025-12420 Unauthenticated Privilege Escalation in ServiceNow AI Platform — Now Assist AI Agents 9.8AICriticalAI2026-01-12
CVE-2025-46696 Dell Secure Connect Gateway 安全漏洞 — Secure Connect Gateway (SCG) Appliance 6.4 Medium2026-01-06
CVE-2025-1977 Moxa NPort 6100-G2 Series和Moxa NPort 6200-G2 Series 安全漏洞 — NPort 6100-G2/6200-G2 Series 8.8 -2025-12-31
CVE-2025-33223 NVIDIA Isaac Launchable 安全漏洞 — Isaac Launchable 9.8 Critical2025-12-23
CVE-2025-33224 NVIDIA Isaac Launchable 安全漏洞 — Isaac Launchable 9.8 Critical2025-12-23
CVE-2025-34290 Versa SASE Client for Windows < 7.9.5 Arbitrary Folder Deletion Leading to Local Privilege Escalation — SASE Client for Windows 7.0AIHighAI2025-12-20
CVE-2025-13911 Inductive Automation Ignition Execution with Unnecessary Privileges — Ignition 6.4 Medium2025-12-18

Vulnerabilities classified as CWE-250 (带着不必要的权限执行) represent 233 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.