Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 992

992 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-41324 Account takeover through API in GLPI — glpi 8.1 High2023-09-26
CVE-2023-41312 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.3 -2023-09-26
CVE-2023-41309 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.5 -2023-09-26
CVE-2023-41036 Macvim's Insecure Usage of IPC Mechanisms — macvim 7.8 High2023-09-12
CVE-2023-41053 Redis SORT_RO may bypass ACL configuration — redis 3.3 Low2023-09-06
CVE-2023-4697 Improper Privilege Management in usememos/memos — usememos/memos 8.1 -2023-09-01
CVE-2023-41743 Acronis Agent和Acronis Cyber Protect 安全漏洞 — Acronis Cyber Protect Home Office 7.8 -2023-08-31
CVE-2022-45451 Acronis Agent和Acronis Cyber Protect 安全漏洞 — Acronis Cyber Protect Home Office 7.8 -2023-08-31
CVE-2023-3636 WP Project Manager <= 2.6.4 - Arbitrary Usermeta Update to Authenticated (Subscriber+) Privilege Escalation — Project Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker 8.8 High2023-08-31
CVE-2023-4404 Donation Forms by Charitable <= 1.7.0.12 - Unauthenticated Privilege Escalation — Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More 9.8 Critical2023-08-23
CVE-2023-3699 An Improper Privilege Management vulnerability was found on the ADM — ADM 8.7 High2023-08-22
CVE-2023-25647 Permission and Access Control Vulnerability in Some ZTE Mobile Phones — Some ZTE Mobile Phones 4.7 Medium2023-08-17
CVE-2023-32490 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2023-08-16
CVE-2023-32487 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 7.8 High2023-08-16
CVE-2023-38721 IBM i privilege escalation — i 8.4 High2023-08-14
CVE-2023-0872 ROLE_REST can be used to escalate to ROLE_ADMIN via /rest/users — Horizon 8.2 High2023-08-14
CVE-2023-3160 Local privilege escalation in security products for Windows — ESET NOD32 Antivirus 7.8 High2023-08-14
CVE-2023-4293 Premium Packages - Sell Digital Products Securely <= 5.7.4 - Arbitrary User Meta Update to Authenticated (Subscriber+) Privilege Escalation — Premium Packages – Sell Digital Products Securely 8.8 High2023-08-12
CVE-2023-37859 PHOENIX CONTACT: Improper Privilege Management in WP 6xxx Web panels — WP 6070-WVPS 7.2 High2023-08-09
CVE-2023-4239 Real Estate Manager <= 7.2 - Arbitrary Usermeta Update to Authenticated (Subscriber+) Privilege Escalation — Real Estate Manager – Property Listing and Agent Management 8.8 High2023-08-09
CVE-2023-39520 Cryptomator vulnerable to Local Elevation of Privileges — cryptomator 5.5 Medium2023-08-07
CVE-2023-4140 WP Ultimate CSV Importer <= 7.9.8 - Arbitrary Usermeta Update to Authenticated (Author+) Privilege Escalation — WP Ultimate CSV Importer – Import CSV, XML & Excel into WordPress 6.6 Medium2023-08-04
CVE-2023-20216 Cisco BroadWorks 安全漏洞 — Cisco BroadWorks 4.4 Medium2023-08-03
CVE-2023-31432 Privilege issues in multiple commands — Fabric OS 7.8 High2023-08-01
CVE-2023-37907 Cryptomator's MSI installer allows local privilege escalation — cryptomator 7.0 High2023-07-25
CVE-2023-38058 Tickets can be moved without permissions — OTRS 4.1 Medium2023-07-24
CVE-2023-37917 Privilege Escalation in kubepi — KubePi 9.1 Critical2023-07-21
CVE-2023-3467 Citrix ADC 和 Citrix Gateway 安全漏洞 — NetScaler ADC  8.0 High2023-07-19
CVE-2023-30799 MikroTik RouterOS Administrator Privilege Escalation — RouterOS 9.1 Critical2023-07-19
CVE-2023-30989 IBM i privilege escalation — i 8.4 High2023-07-16

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 992 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.