CWE-264 (权限、特权和访问控制) — Vulnerability Class 276

276 vulnerabilities classified as CWE-264 (权限、特权和访问控制). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2019-15272	Cisco Unified Communications Manager Security Bypass Vulnerability — Cisco Unified Communications Manager	8.2	-	2019-10-02
CVE-2019-11773	Eclipse OMR 代码问题漏洞 — Eclipse OMR	7.8	-	2019-09-12
CVE-2019-1969	Cisco NX-OS Software SNMP Access Control List Configuration Name Bypass Vulnerability — Cisco NX-OS Software	5.3	-	2019-08-29
CVE-2019-1966	Cisco Unified Computing System Fabric Interconnect root Privilege Escalation Vulnerability — Cisco Unified Computing System (Managed)	7.8	-	2019-08-29
CVE-2019-13013	Objective Development Software Little Snitch privileged helper tool 权限许可和访问控制问题漏洞 — Little Snitch	7.1	-	2019-08-23
CVE-2019-13014	Objective Development Software Little Snitch 权限许可和访问控制问题漏洞 — Little Snitch	7.7	-	2019-08-23
CVE-2019-12634	Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Denial of Service Vulnerability — Cisco Unified Computing System Director	7.5	-	2019-08-21
CVE-2019-3637	Privilege Escalation vulnerability in FRP 5.x earlier than 5.1.0.209 — McAfee FRP	7.8	-	2019-08-14
CVE-2019-12808	ESTsoft ALTOOLS update service 权限许可和访问控制问题漏洞 — ALTOOLS Update Service	7.8	-	2019-08-13
CVE-2019-1972	Cisco Enterprise NFV Infrastructure Software Privilege Escalation Vulnerability — Cisco Enterprise NFV Infrastructure Software	6.7	-	2019-08-08
CVE-2019-11771	Eclipse OpenJ9 权限许可和访问控制问题漏洞 — Eclipse OpenJ9	7.8	-	2019-07-17
CVE-2019-1889	Cisco Application Policy Infrastructure Controller REST API Privilege Escalation Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)	7.2	-	2019-07-04
CVE-2019-1855	Cisco Jabber for Windows DLL Preloading Vulnerability — Cisco Jabber for Windows	7.8	-	2019-07-04
CVE-2019-1620	Cisco Data Center Network Manager Arbitrary File Upload and Remote Code Execution Vulnerability — Cisco Data Center Network Manager	9.8	-	2019-06-27
CVE-2019-1621	Cisco Data Center Network Manager Arbitrary File Download Vulnerability — Cisco Data Center Network Manager	7.5	-	2019-06-27
CVE-2019-1906	Cisco Prime Infrastructure Virtual Domain Privilege Escalation Vulnerability — Cisco Prime Infrastructure	6.5	-	2019-06-20
CVE-2019-1625	Cisco SD-WAN Solution Privilege Escalation Vulnerability — Cisco SD-WAN Solution	7.8	-	2019-06-20
CVE-2019-1626	Cisco SD-WAN Solution Privilege Escalation Vulnerability — Cisco SD-WAN Solution	8.8	-	2019-06-20
CVE-2019-1730	Cisco NX-OS Software Bash Bypass Guest Shell Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1727	Cisco NX-OS Software Python Parser Privilege Escalation Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1803	Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Root Privilege Escalation Vulnerability — Cisco NX-OS Software for Nexus 9000 Series Fabric Switches ACI Mode	6.7	-	2019-05-03
CVE-2019-1682	Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)	7.8	-	2019-05-03
CVE-2019-1592	Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Privilege Escalation Vulnerability — Cisco NX-OS Software for Nexus 9000 Series Fabric Switches ACI Mode 11.0.1b	6.7	-	2019-05-03
CVE-2019-1723	Cisco Common Services Platform Collector Static Credential Vulnerability — Cisco Common Services Platform Collector Software	9.8	-	2019-03-13
CVE-2019-1602	Cisco NX-OS Software Privilege Escalation Vulnerability — Nexus 3000 Series Switches	7.8	-	2019-03-08
CVE-2019-1600	Cisco FXOS and NX-OS Software Unauthorized Directory Access Vulnerability — Firepower 4100 Series Next-Generation Firewalls	4.4	-	2019-03-07
CVE-2019-1596	Cisco NX-OS Software Bash Shell Privilege Escalation Vulnerability — Nexus 3000 Series Switches	7.8	-	2019-03-07
CVE-2019-1591	Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Shell Escape Vulnerability — Cisco NX-OS Software for Nexus 9000 Series Fabric Switches ACI Mode	7.8	-	2019-03-06
CVE-2019-1593	Cisco NX-OS Software Bash Shell Role-Based Access Control Bypass Privilege Escalation Vulnerability — Nexus 3000 Series Switches	7.8	-	2019-03-06
CVE-2019-1594	Cisco NX-OS Software 802.1X Extensible Authentication Protocol over LAN Denial of Service Vulnerability — Nexus 1000V Switch for VMware vSphere	7.4	-	2019-03-06

Vulnerabilities classified as CWE-264 (权限、特权和访问控制) represent 276 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-264 (权限、特权和访问控制) — Vulnerability Class 276