Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-250 (带着不必要的权限执行) — Vulnerability Class 233

233 vulnerabilities classified as CWE-250 (带着不必要的权限执行). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-33120 IBM QRadar SIEM privilege escalation — QRadar SIEM 7.8 High2025-08-22
CVE-2025-21110 Dell Data Lakehouse 安全漏洞 — Data Lakehouse 6.7 Medium2025-08-14
CVE-2025-8907 H3C M2 NAS Webserver Configuration unnecessary privileges — M2 NAS 7.0 High2025-08-13
CVE-2025-40767 Siemens SINEC Traffic Analyzer 安全漏洞 — SINEC Traffic Analyzer 7.8 High2025-08-12
CVE-2025-3892 AXIS OS 安全漏洞 — AXIS OS 6.7 Medium2025-08-12
CVE-2025-42943 Information Disclosure in SAP GUI for Windows — SAP GUI for Windows 4.5 Medium2025-08-12
CVE-2025-55077 Tyler Technologies ERP Pro 9 SaaS application escape — ERP Pro 9 SaaS 7.4 High2025-08-07
CVE-2025-33109 IBM i privilege escalation — i 7.5 High2025-07-24
CVE-2025-43487 Poly Clariti Manager - Multiple Security Vulnerabilities — Poly Clariti Manager 8.8 -2025-07-22
CVE-2025-6019 Libblockdev: lpe from allow_active to root in libblockdev via udisks 7.0 High2025-06-19
CVE-2025-36048 IBM webMethods Integration Sever code execution — webMethods Integration Server 7.2 High2025-06-18
CVE-2025-1411 IBM Security Verify Directory Container command execution — Security Verify Directory 7.8 High2025-06-15
CVE-2025-33108 IBM Backup Recovery and Media Services for i code execution — Backup Recovery and Media Services for i 8.5 High2025-06-14
CVE-2024-13090 Privilege escalation in Guardian/CMC before 24.6.0 — Guardian 7.0 High2025-06-10
CVE-2025-5196 Wing FTP Server Lua Admin Console unnecessary privileges — FTP Server 6.6 Medium2025-05-26
CVE-2025-33103 IBM i privilege escalation — i 8.5 High2025-05-17
CVE-2025-0921 Information Tampering Vulnerability in Multiple Services of GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, IoTWorX, MC Works64, GENESIS, GENESIS32, and BizViz — GENESIS64 6.5 Medium2025-05-15
CVE-2025-1137 IBM Storage Scale command injection — Storage Scale 7.5 High2025-05-10
CVE-2025-3925 BrightSign Players Execution with Unnecessary Privileges — BrightSign OS series 4 players 7.8 High2025-05-07
CVE-2024-6030 Tesla Model S oFono Unnecessary Privileges Sandbox Escape Vulnerability — Model S 8.8AIHighAI2025-04-30
CVE-2025-23181 Ribbon Communications - CWE-250: Execution with Unnecessary Privileges — Apollo 9608 8.0 High2025-04-29
CVE-2025-23180 Ribbon Communications - CWE-250: Execution with Unnecessary Privileges — Apollo 9608 8.0 High2025-04-29
CVE-2025-1951 IBM Hardware Management Console - Power Systems command execution — Hardware Management Console - Power Systems 8.4 High2025-04-22
CVE-2025-32445 Users can gain privileged access to the host system and cluster with EventSource and Sensor CR — argo-events 10.0 Critical2025-04-15
CVE-2025-0120 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability — GlobalProtect App 7.0AIHighAI2025-04-11
CVE-2025-23009 SonicWALL NetExtender Windows client 安全漏洞 — NetExtender 7.1AIHighAI2025-04-10
CVE-2025-23008 SonicWALL NetExtender Windows client 安全漏洞 — NetExtender 8.1AIHighAI2025-04-10
CVE-2025-3364 HGiga PowerStation - Chroot Escape — PowerStation 6.7 Medium2025-04-08
CVE-2024-11821 Privilege Escalation in langgenius/dify — langgenius/dify 5.7 -2025-03-20
CVE-2024-48013 Dell SmartFabric OS10 安全漏洞 — SmartFabric OS10 Software 8.8 High2025-03-17

Vulnerabilities classified as CWE-250 (带着不必要的权限执行) represent 233 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.