Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 990

990 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-49558 Dell SmartFabric OS10 安全漏洞 — SmartFabric OS10 Software 7.8 High2024-11-12
CVE-2024-24409 Privilege Escalation — ADManager Plus 8.8 High2024-11-08
CVE-2024-8424 WatchGuard Endpoint Protection Privilege Escalation in PSANHost Enables Arbitrary File Delete as SYSTEM — EPDR 7.8 High2024-11-07
CVE-2024-8810 Privilege Management vulnerability was identified in GitHub Enterprise Server that allowed GitHub Apps to grant themselves write access — Enterprise Server 6.5AIMediumAI2024-11-07
CVE-2024-10203 Agent Arbitrary File Deletion — EndPoint Central 7.0 High2024-11-07
CVE-2024-51521 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.7 Medium2024-11-05
CVE-2024-20374 Cisco Secure Firewall Management Center 安全漏洞 — Cisco Firepower Management Center 6.5 Medium2024-10-23
CVE-2023-32196 Rancher's External RoleTemplates can lead to privilege escalation — rancher 6.6 Medium2024-10-16
CVE-2023-32194 Rancher permissions on 'namespaces' in any API group grants 'edit' permissions on namespaces in 'core' — rancher 7.2 High2024-10-16
CVE-2024-9002 Schneider Electric Easergy Studio 安全漏洞 — Easergy Studio 7.8 High2024-10-11
CVE-2024-22068 Weak Password Vulnerability in ZTE ZSR V2 Intelligent Multi Service Router — ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series 6.0 Medium2024-10-10
CVE-2024-9518 UserPlus <= 2.0 - Unauthenticated Privilege Escalation — User registration & user profile – UserPlus 9.8 Critical2024-10-10
CVE-2024-38818 VMware NSX 安全漏洞 — VMware NSX, VMware Cloud Foundation 6.7 Medium2024-10-09
CVE-2024-9471 PAN-OS: Privilege Escalation (PE) Vulnerability in XML API — PAN-OS 7.2AIHighAI2024-10-09
CVE-2024-3057 Pure Storage FlashArray Purity 安全漏洞 — FlashArray 9.8 Critical2024-10-08
CVE-2024-45297 Prevent topic list filtering by hidden tags for unauthorized users in Discourse — discourse 5.3 Medium2024-10-07
CVE-2024-44097 Google Nest 安全漏洞 — Android 9.1 -2024-10-02
CVE-2024-9265 Echo RSS Feed Post Generator <= 5.4.6 - Unauthenticated Privilege Escalation — Echo RSS Feed Post Generator 9.8 Critical2024-10-01
CVE-2024-45373 Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE Improper Privilege Management — ProGauge MAGLINK LX CONSOLE 8.8 High2024-09-24
CVE-2024-8263 GitHub Enterprise Server 安全漏洞 — GitHub Enterprise Server 9.1AICriticalAI2024-09-23
CVE-2024-0003 FlashArray 安全漏洞 — FlashArray 9.1 Critical2024-09-23
CVE-2024-8853 Webo-facto <= 1.40 - Unauthenticated Privilege Escalation — Webo-facto 9.8 Critical2024-09-20
CVE-2024-46999 User Grant Deactivation not Working in Zitadel — zitadel 7.3 High2024-09-19
CVE-2024-47000 Service Users Deactivation not Working in Zitadel — zitadel 8.1 High2024-09-19
CVE-2024-46989 Multiple caveats on resources of the same type can result in no permission when permission is expected — spicedb 3.7 Low2024-09-18
CVE-2024-45496 Openshift-controller-manager: elevated build pods can lead to node compromise in openshift 9.9 Critical2024-09-16
CVE-2024-6482 Login with phone number <= 1.7.49 - Authenticated (Subscriber+) Authorization Bypass to Privilege Escalation — OTP Login With Phone Number, OTP Verification 8.8 High2024-09-14
CVE-2024-8246 Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) <= 2.8.11 - Authenticated (Contributor+) Privilege Escalation — Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) 8.8 High2024-09-14
CVE-2024-7960 Rockwell Automation Incorrect Privileges and Path Traversal Vulnerability in Pavilion8® — Pavilion8® 8.1AIHighAI2024-09-12
CVE-2024-8533 Rockwell Automation OptixPanel™ Privilege Escalation Vulnerability via File Permissions — 2800C OptixPanel™ Compact 7.8AIHighAI2024-09-12

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 990 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.