Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 993

993 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-41666 The Argo CD web terminal session does not handle the revocation of user permissions properly. — argo-cd 4.7 Medium2024-07-24
CVE-2020-11640 Elevation of Privilege — Advant MOD 300 AdvaBuild 8.8 High2024-07-23
CVE-2024-1575 Zyxel WBE660S 安全漏洞 — WBE660S firmware 6.5 Medium2024-07-23
CVE-2024-6908 Admin Can Escalate Privileges to SuperAdmin Using Manual PUT Request — YugabyteDB Anywhere 7.2 -2024-07-19
CVE-2024-30473 Dell ECS 安全漏洞 — ECS 4.9 Medium2024-07-18
CVE-2023-4976 FlashBlade Authentication Mechanism Vulnerability — FlashBlade 7.8AIHighAI2024-07-17
CVE-2024-5566 Improper Privilege Management allows for access to unauthorized repository content during migration — GitHub Enterprise Server 5.8 Medium2024-07-16
CVE-2024-6326 Rockwell Automation Unsecured Private Keys in FactoryTalk® System Services — FactoryTalk® System Services (installed via FTPM) 8.1AIHighAI2024-07-16
CVE-2024-6325 Rockwell Automation Unsecured Private Keys in FactoryTalk® System Services — FactoryTalk® System Services (installed via FTPM) 9.8AICriticalAI2024-07-16
CVE-2024-37560 WordPress WP User Switch plugin <= 1.1.0 - Privilege Escalation vulnerability — WP User Switch 8.0 High2024-07-12
CVE-2024-6624 JSON API User <= 3.9.3 - Unauthenticated Privilege Escalation — JSON API User 9.8 Critical2024-07-11
CVE-2024-6411 ProfileGrid – User Profiles, Groups and Communities <= 5.8.9 - Authenticated (Subscriber+) Authorization Bypass to Privilege Escalation — ProfileGrid – User Profiles, Groups and Communities 8.8 High2024-07-10
CVE-2024-38089 Microsoft Defender for IoT Elevation of Privilege Vulnerability — Microsoft Defender for IoT 9.1 Critical2024-07-09
CVE-2024-37952 WordPress BookYourTravel theme <= 8.18.17 - Subscriber+ Privilege Escalation vulnerability — BookYourTravel 8.8 High2024-07-09
CVE-2024-37484 WordPress Zephyr Project Manager plugin <= 3.3.97 - Privilege Escalation vulnerability — Zephyr Project Manager 8.8 High2024-07-09
CVE-2024-37455 WordPress Ultimate Addons for elementor plugin <= 1.36.31 - Privilege Escalation vulnerability — Ultimate Addons for Elementor 8.8 High2024-07-09
CVE-2024-37126 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2024-07-02
CVE-2024-37133 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2024-07-02
CVE-2024-32854 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2024-07-02
CVE-2024-39302 Some bbb-record-core files installed with wrong file permission — bigbluebutton 3.7 Low2024-06-28
CVE-2024-5009 WhatsUp Gold SetAdminPassword Improper Access Control Privilege Escalation Vulnerability — WhatsUp Gold 8.4 High2024-06-25
CVE-2024-37107 WordPress WishList Member X plugin < 3.26.7 - Authenticated Privilege Escalation vulnerability — WishList Member X 8.8 High2024-06-24
CVE-2024-6240 Improper privilege management vulnerability in Parallels Desktop — Parallels Desktop 7.7 High2024-06-21
CVE-2024-2003 Local Privilege Escalation in Quarantine of ESET products for Windows — ESET NOD32 Antivirus 7.3 High2024-06-21
CVE-2024-36500 Huawei 手机安全漏洞 — HarmonyOS 7.8 High2024-06-14
CVE-2024-36499 Huawei 手机安全漏洞 — HarmonyOS 6.8 Medium2024-06-14
CVE-2024-5909 Cortex XDR Agent: Local Windows User Can Disable the Agent — Cortex XDR Agent 7.8AIHighAI2024-06-12
CVE-2024-5907 Cortex XDR Agent: Local Privilege Escalation (PE) Vulnerability — Cortex XDR Agent 7.0AIHighAI2024-06-12
CVE-2024-5759 Improper privilege management — Security Center 5.4 Medium2024-06-12
CVE-2024-33500 多款Siemens产品 安全漏洞 — Mendix Applications using Mendix 10 5.9 Medium2024-06-11

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 993 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.