Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 992

992 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-2240 Improper Privilege Management in microweber/microweber — microweber/microweber 8.1 -2023-04-22
CVE-2022-47505 SolarWinds Platform Local Privilege Escalation Vulnerability — SolarWinds Platform 7.8 High2023-04-21
CVE-2023-22645 kubewarden: Excessive permissions for kubewarden-controller-manager-cluster-role — kubewarden 8.0 High2023-04-19
CVE-2023-1548 Schneider Electric EcoStruxure Control Expert 安全漏洞 — EcoStruxure Control Expert 5.5 Medium2023-04-18
CVE-2023-22946 Apache Spark proxy-user privilege escalation from malicious configuration class — Apache Spark 6.4 Medium2023-04-17
CVE-2023-29018 OpenFeature Operator vulnerable to Cluster-level Privilege Escalation — open-feature-operator 8.1 High2023-04-14
CVE-2023-1326 local privilege escalation in apport-cli — Apport 7.7 High2023-04-13
CVE-2023-24509 On affected modular platforms running Arista EOS equipped with both redundant supervisor modules and having the redundancy protocol configured with RPR or SSO, an existing unprivileged user can login to the standby supervisor as a root user, leading t ... — Arista EOS 9.3 Critical2023-04-13
CVE-2022-27487 Fortinet FortiSandbox 安全漏洞 — FortiDeceptor 8.3 High2023-04-11
CVE-2023-28855 Fields GLPI plugin vulnerable to unauthorized write access to additional fields — fields 6.5 Medium2023-04-05
CVE-2023-28632 GLPI vulnerable to account takeover by authenticated user — glpi 8.1 High2023-04-05
CVE-2023-0192 NVIDIA GPU Display Driver for Windows 安全漏洞 — vGPU software (Virtual GPU Manager - Citrix Hypervisor, VMware vSphere, Red Hat Enterprise Linux KVM), NVIDIA Cloud Gaming (Virtual GPU Manager - Red Hat Enterprise Linux KVM) 4.7 Medium2023-04-01
CVE-2023-1762 Improper Privilege Management in thorsten/phpmyfaq — thorsten/phpmyfaq 8.8 -2023-03-31
CVE-2023-28640 Permissions bypass in Apiman could enable authenticated attacker to unpermitted API Key — apiman 6.4 Medium2023-03-27
CVE-2023-28436 Non-interactive Tailscale SSH sessions on FreeBSD may use the effective group ID of the tailscaled process — tailscale 5.7 Medium2023-03-23
CVE-2023-28434 MinIO is vulnerable to privilege escalation on Linux/MacOS — minio 8.8 High2023-03-22
CVE-2023-21458 SAMSUNG Mobile Devices 安全漏洞 — Samsung Mobile Devices 6.2 Medium2023-03-16
CVE-2023-27589 Minio vulnerable to denial of access by an admin privileged user for root credential — minio 6.5 Medium2023-03-14
CVE-2023-23412 Windows Accounts Picture Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-03-14
CVE-2022-39953 Fortinet FortiNAC 安全漏洞 — FortiNAC 7.8 High2023-03-07
CVE-2022-38378 Fortinet FortiOS 安全漏洞 — FortiOS 4.0 Medium2023-02-16
CVE-2023-24483 Privilege Escalation to NT AUTHORITY\SYSTEM on the vulnerable VDA — Citrix Virtual Apps and Desktops 7.8 -2023-02-16
CVE-2022-42735 Apache ShenYu Admin ultra vires — Apache ShenYu 8.8 -2023-02-15
CVE-2022-38777 Elastic Endpoint Security 安全漏洞 — Elastic Endpoint Security 7.8 -2023-02-08
CVE-2022-43759 Rancher: Privilege escalation via promoted roles — Rancher 7.2 High2023-02-07
CVE-2023-23610 glpi vulnerable to Unauthorized access to data export — glpi 6.5 Medium2023-01-25
CVE-2022-38774 Elastic Endpoint Security 安全漏洞 — Elastic Endpoint Security and Elastic Endgame Security 7.8 -2023-01-24
CVE-2022-38775 Elastic Endpoint Security 安全漏洞 — Elastic Endpoint Security 7.8 -2023-01-24
CVE-2023-0242 Insufficient permission check in the VQL copy() function — Velociraptor 8.8 -2023-01-18
CVE-2021-4314 API Mediation Layer 授权问题漏洞 — Zowe 5.3 -2023-01-18

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 992 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.