CWE-269 (特权管理不恰当) — Vulnerability Class 992

992 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2020-8021	unauthorized read access to files where sourceaccess is disabled via a crafted _service file in Open Build Service — Open Build Service	5.3	Medium	2020-05-19
CVE-2020-6992	GE CIMPLICITY 安全漏洞 — GE Digital CIMPLICITY	6.7	-	2020-04-15
CVE-2020-7273	Autorun registry bypass — McAfee Endpoint Security (ENS)	6.7	Medium	2020-04-15
CVE-2020-7274	ENS elevated permissions vulnerability — McAfee Endpoint Security (ENS)	6.6	Medium	2020-04-15
CVE-2019-15789	Microk8s Privilege Escalation Vulnerability — MicroK8s	8.8	High	2020-04-08
CVE-2018-17954	crowbar provision leaks admin password to all nodes in cleartext — SUSE OpenStack Cloud 7	9.3	Critical	2020-04-03
CVE-2020-6968	Honeywell INNCOM INNControl 3 安全漏洞 — INNCOM INNControl 3	7.8	-	2020-02-20
CVE-2019-11288	tcServer JMX Socket Listener Registry Rebinding Local Privilege Escalation — Pivotal tc Server 4.x	7.1	-	2020-01-27
CVE-2019-18899	apt-cacher-ng insecure use of /run/apt-cacher-ng — Leap 15.1	6.2	Medium	2020-01-23
CVE-2019-11280	Privilege escalation through the invitations service — Pivotal Application Service (PAS)	8.8	-	2019-09-20
CVE-2019-11270	UAA clients.write vulnerability — UAA Release (OSS)	7.5	-	2019-08-05
CVE-2019-7394	CA Risk Authentication和CA Strong Authentication 权限许可和访问控制问题漏洞 — CA Strong Authentication	8.8	-	2019-05-28
CVE-2019-3786	BBR could run arbitrary scripts on deployment VMs — BOSH Backup and Restore	7.1	-	2019-04-24
CVE-2018-19012	多款Drager产品安全漏洞 — DrÃ¤ger Infinity Delta	9.9	-	2019-01-28
CVE-2018-19635	CA Service Desk Manager 权限许可和访问控制问题漏洞 — CA Service Desk Manager	9.8	-	2019-01-22
CVE-2018-14828	Advantech WebAccess 安全漏洞 — Advantech WebAccess	8.4	-	2018-10-23
CVE-2018-14808	Emerson Electric AMS Device Manager 安全漏洞 — AMS Device Manager	6.5	-	2018-10-01
CVE-2018-10502	Samsung Galaxy Apps 权限许可和访问控制漏洞 — Samsung Galaxy Apps	7.8	-	2018-09-24
CVE-2018-11614	Samsung Members 权限许可和访问控制漏洞 — Samsung Members	8.8	-	2018-09-24
CVE-2018-14825	多款Honeywell产品安全漏洞 — Mobile Computers	6.7	-	2018-09-24
CVE-2018-13799	Siemens SIMATIC WinCC OA 访问控制错误漏洞 — SIMATIC WinCC OA V3.14 and prior	9.1	-	2018-09-12
CVE-2018-14791	Emerson Electric DeltaV DCS 权限许可和访问控制漏洞 — DeltaV DCS	7.1	-	2018-08-23
CVE-2018-14787	Philips IntelliSpace Cardiovascular和Xcelera 安全漏洞 — IntelliSpace Cardiovascular (ISCV) products	7.8	-	2018-08-22
CVE-2016-9489	ManageEngine Applications Manager 12 and 13 is vulnerable to privilege escalation and authentication bypass — Applications Manager	8.1	-	2018-07-13
CVE-2018-8841	多款Advantech产品安全漏洞 — WebAccess	8.1	-	2018-05-15
CVE-2017-0932	Ubiquiti Networks EdgeOS 安全漏洞 — EdgeRouter X	8.8	-	2018-03-22
CVE-2017-0934	Ubiquiti Networks EdgeOS 安全漏洞 — EdgeRouter X	8.8	-	2018-03-22
CVE-2017-0935	Ubiquiti Networks EdgeOS 安全漏洞 — EdgeRouter X	8.8	-	2018-03-22
CVE-2017-12728	iniNet Solutions SpiderControl SCADA Web Server 安全漏洞 — SpiderControl SCADA Web Server	7.8	-	2017-10-04
CVE-2017-9940	Siemens SiPass integrated 安全漏洞 — SiPass integrated All versions before V2.70	8.1	-	2017-08-08

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 992 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-269 (特权管理不恰当) — Vulnerability Class 992