Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 992

992 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-37938 Elastic Stack Kibana 路径遍历漏洞 — Kibana 7.1 -2021-11-18
CVE-2021-25508 Samsung SmartThings 安全漏洞 — SmartThings 5.3 Medium2021-11-05
CVE-2021-25502 Samsung SMR 安全漏洞 — Samsung Mobile Devices 7.9 High2021-11-05
CVE-2021-23877 McAfee Total Protection (MTP) - Privilege Escalation vulnerability — McAfee Total Protection (MTP) 6.7 Medium2021-10-26
CVE-2021-31360 Junos OS and Junos OS Evolved: Denial of Service vulnerability in local file processing — Junos OS 7.1 High2021-10-19
CVE-2021-31359 Junos OS and Junos OS Evolved: Local Privilege Escalation vulnerability — Junos OS 7.8 High2021-10-19
CVE-2021-31350 Junos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET) — Junos OS 7.5 High2021-10-19
CVE-2021-27664 exacqVision Web Service — exacqVision Web Service 9.8 Critical2021-10-11
CVE-2021-34766 Cisco Smart Software Manager Privilege Escalation Vulnerability — Cisco Smart Software Manager On-Prem 5.4 Medium2021-10-06
CVE-2021-23893 Privilege Escalation vulnerability in McAfee Drive Encryption (MDE) — McAfee Drive Encryption (MDE) 8.8 High2021-10-01
CVE-2021-31836 Improper Privilege Management in MA for Windows — McAfee Agent for Windows 5.6 Medium2021-09-22
CVE-2021-31847 Improper privilege management in repair process of MA for Windows — McAfee Agent for Windows 8.2 High2021-09-22
CVE-2021-37173 Siemens RUGGEDCOM 信息泄露漏洞 — RUGGEDCOM ROX MX5000 7.5 -2021-09-14
CVE-2021-38540 Apache Airflow: Variable Import endpoint missed authentication check — Apache Airflow 9.8 -2021-09-09
CVE-2021-30355 Amazon Kindle e-reader 安全漏洞 — Amazon Kindle e-reader 8.6 -2021-09-01
CVE-2021-37911 BenQ EH600安全漏洞 — EH600 OTA 8.8 High2021-08-30
CVE-2021-39167 TimelockController vulnerability in OpenZeppelin Contracts — openzeppelin-contracts 10.0 Critical2021-08-26
CVE-2021-39168 TimelockController vulnerability in OpenZeppelin Contracts — openzeppelin-contracts-upgradeable 10.0 Critical2021-08-26
CVE-2021-24602 HM Multiple Roles < 1.3 - Arbitrary Role Change — HM Multiple Roles 8.8 -2021-08-23
CVE-2021-24038 Facebook Oculus Desktop 安全漏洞 — Oculus Desktop 7.8 -2021-08-18
CVE-2021-34745 AppDynamics .NET Agent Privilege Escalation Vulnerability — AppDynamics .NET Agent for Windows 7.8 High2021-08-18
CVE-2021-37627 Privilege escalation via form generator — contao 8.0 High2021-08-11
CVE-2021-33526 Privilege escalation in mbDIALUP <= 3.9R0.0 — mbDIALUP 7.8 High2021-08-02
CVE-2021-31581 Akkadian Provisioning Manager Engine (PME) Shell Escape via 'vi' editor interface — Provisioning Manager Engine (PME) 7.9 High2021-07-22
CVE-2021-25442 Samsung KCS授权问题漏洞 — Knox Mobile Enrollment 9.1 -2021-07-08
CVE-2021-25429 Bluetooth 安全漏洞 — Samsung Mobile Devices 3.5 -2021-07-08
CVE-2021-25428 PackageManager安全漏洞 — Samsung Mobile Devices 7.8 -2021-07-08
CVE-2021-34621 ProfilePress 3.0 - 3.1.3 - Unauthenticated Privilege Escalation — ProfilePress 9.8 Critical2021-07-07
CVE-2021-34622 ProfilePress 3.0 - 3.1.3 - Authenticated Privilege Escalation — ProfilePress 9.8 Critical2021-07-07
CVE-2021-27661 Facility Explorer — Facility Explorer SNC Series Supervisory Controllers (F4-SNC) 8.8 High2021-07-01

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 992 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.