CWE-268 (特权链锁) — Vulnerability Class 20

20 vulnerabilities classified as CWE-268 (特权链锁). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-3888	Local Privilege Escalation in snapd	7.8	High	2026-03-17
CVE-2025-64701	QualitySoft QND 安全漏洞 — QND Premium/Advance/Standard	7.8^AI	High^AI	2025-12-11
CVE-2025-7973	Rockwell Automation FactoryTalk® ViewPoint Privilege Escalation Vulnerability — FactoryTalk® ViewPoint	7.8^AI	High^AI	2025-08-14
CVE-2025-36124	IBM WebSphere Application Server Liberty bypass security — WebSphere Application Server Liberty	5.9	Medium	2025-08-12
CVE-2025-2297	Privilege Management for Windows - Elevation of Privilege — Privilege Management for Windows	7.8^AI	High^AI	2025-07-28
CVE-2025-49741	Microsoft Edge (Chromium-based) Information Disclosure Vulnerability — Microsoft Edge (Chromium-based)	7.4	High	2025-07-01
CVE-2025-20112	Cisco Unified Communications Products Privilege Escalation Vulnerability — Cisco Emergency Responder	5.1	Medium	2025-05-21
CVE-2025-32955	Harden-Runner Evasion of 'disable-sudo' policy — harden-runner	6.0	Medium	2025-04-21
CVE-2025-2903	Privilege Chaining in Delphix — Delphix	9.8^AI	Critical^AI	2025-04-17
CVE-2024-4877	OpenVPN 安全漏洞 — OpenVPN	7.8^AI	High^AI	2025-04-03
CVE-2025-0889	Privilege Management for Windows – Elevation of Privilege — Privilege Management for Windows	7.0	-	2025-02-26
CVE-2024-47045	e-Tax Reception System 安全漏洞 — The installer of e-Tax software(common program)	7.8^AI	High^AI	2024-09-26
CVE-2024-1299	Privilege Chaining in GitLab — GitLab	6.5	Medium	2024-03-07
CVE-2024-1250	Privilege Chaining in GitLab — GitLab	6.5	Medium	2024-02-12
CVE-2023-5839	Privilege Chaining in hestiacp/hestiacp — hestiacp/hestiacp	8.8	-	2023-10-29
CVE-2023-20194	Cisco Identity Services Engine 安全漏洞 — Cisco Identity Services Engine Software	4.9	Medium	2023-09-07
CVE-2023-2250	Open Cluster Management 安全漏洞 — MCE	8.8	-	2023-04-24
CVE-2023-0759	Privilege Chaining in cockpit-hq/cockpit — cockpit-hq/cockpit	8.8	-	2023-02-09
CVE-2022-1003	Sysadmin can override existing configs & bypass restrictions like EnableUploads — Mattermost	3.3	Low	2022-03-18
CVE-2019-3844	systemd 权限许可和访问控制问题漏洞 — systemd	7.8	-	2019-04-26

Vulnerabilities classified as CWE-268 (特权链锁) represent 20 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-268 (特权链锁) — Vulnerability Class 20