Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 992

992 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-4018 Privilege Escalation in U-Series Appliance — U-Series Appliance 8.8 High2024-04-19
CVE-2024-3470 Repository administrator can bypass organization's ruleset using deploy keys — Enterprise Server 5.9 Medium2024-04-19
CVE-2024-21989 Privilege Escalation Vulnerability in ONTAP Select Deploy administration utility — ONTAP Select Deploy administration utility 8.1 High2024-04-17
CVE-2024-32003 Dusk plugin may allow unfettered user authentication in misconfigured installs — wn-dusk-plugin 8.8 High2024-04-12
CVE-2024-3388 PAN-OS: User Impersonation in GlobalProtect SSL VPN — PAN-OS 4.1 Medium2024-04-10
CVE-2024-29052 Windows Storage Elevation of Privilege Vulnerability — Windows Server 2022 7.8 High2024-04-09
CVE-2024-28904 Microsoft Brokering File System Elevation of Privilege Vulnerability — Windows Server 2022, 23H2 Edition (Server Core installation) 7.8 High2024-04-09
CVE-2024-21324 Microsoft Defender for IoT Elevation of Privilege Vulnerability — Microsoft Defender for IoT 7.2 High2024-04-09
CVE-2024-28905 Microsoft Brokering File System Elevation of Privilege Vulnerability — Windows Server 2022, 23H2 Edition (Server Core installation) 7.8 High2024-04-09
CVE-2024-0082 CVE — ChatRTX 8.2 High2024-04-08
CVE-2023-52543 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2AIMediumAI2024-04-08
CVE-2023-52716 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.5AIMediumAI2024-04-07
CVE-2024-20282 Cisco Nexus Dashboard 安全漏洞 — Cisco Nexus Dashboard 6.0 Medium2024-04-03
CVE-2024-0172 Dell PowerEdge Server BIOS 和 Dell Precision Rack BIOS 安全漏洞 — PowerEdge Platform 7.9 High2024-04-03
CVE-2024-3137 Improper Privilege Management in uvdesk/community-skeleton — uvdesk/community-skeleton 8.8AIHighAI2024-04-02
CVE-2024-23537 Apache Fineract: Under certain circumstances, this vulnerability allowed users, without specific permissions, to escalate their privileges to any role. — Apache Fineract 8.4 High2024-03-29
CVE-2024-25961 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.0 Medium2024-03-28
CVE-2024-1973 Elevation of privileges vulnerability — Secure Content Manager 8.5 High2024-03-25
CVE-2024-26247 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability — Microsoft Edge (Chromium-based) 4.7 Medium2024-03-22
CVE-2024-2228 IdentityIQ Authorization of QuickLink Target Identities Vulnerability — IdentityIQ 7.1 High2024-03-22
CVE-2023-47715 IBM Storage Protect Plus Server improper access control — Storage Protect Plus Server 4.3 Medium2024-03-21
CVE-2024-2390 Local Privilege Escalation — Nessus Agent 7.8 High2024-03-18
CVE-2024-28851 Elevation of privilege in Snowflake Hive MetaStore Connector Helper script — snowflake-hive-metastore-connector 4.0 Medium2024-03-15
CVE-2024-27301 Privilege Escalation Abusing installer in SupportApp — SupportApp 7.3 High2024-03-14
CVE-2023-50726 Users with `create` but not `override` privileges can perform local sync in argo-cd — argo-cd 6.4 Medium2024-03-13
CVE-2024-2433 PAN-OS: Improper Privilege Management Vulnerability in Panorama Software Leads to Availability Loss — PAN-OS 4.3 Medium2024-03-13
CVE-2024-2432 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability — GlobalProtect App 4.5 Medium2024-03-13
CVE-2024-2431 GlobalProtect App: Local User Can Disable GlobalProtect — GlobalProtect App 5.5 Medium2024-03-13
CVE-2024-20262 Cisco IOS XR 安全漏洞 — Cisco IOS XR Software 6.5 Medium2024-03-13
CVE-2024-1505 Academy LMS – eLearning and online course solution for WordPress <= 1.9.19 - Authenticated (Subscriber+) Privilege Escalation — Academy LMS – WordPress LMS Plugin for Complete eLearning Solution 8.8 High2024-03-13

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 992 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.