Weaknesses of type CWE-269
1,785 resultsCVE-2022-43308HIGHINTELBRAS SG 2404 MR 20180928-rel64938 allows authenticated attackers to arbitrarily create Administrator accounts via crafted user cookies.EPSS 0.3%CVE-2018-10502—This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Galaxy Apps Fixed in version 4.2.18.EPSS 0.3%CVE-2020-7311HIGHPrivilege Escalation vulnerability in MA for WindowsEPSS 0.3%CVE-2019-3588MEDIUMUsing VSE to bypass Windows Credentials on Lock screenEPSS 0.3%CVE-2023-52114HIGHData confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity.EPSS 0.3%CVE-2026-46617HIGHFission runtime pods automount the fission-fetcher service-account token into the user function container, granting function code namespace-wide secret / configmap readEPSS 0.3%CVE-2026-3621HIGHIBM WebSphere Application Server Liberty is affected by identity spoofingEPSS 0.3%CVE-2026-11616HIGHEvents Calendar for GeoDirectory <= 2.3.28 - Authenticated (Subscriber+) Privilege EscalationEPSS 0.3%CVE-2021-1447MEDIUMCisco Content Security Management Appliance Privilege Escalation VulnerabilityEPSS 0.3%CVE-2026-50563CRITICALFission Container Executor Function PodSpec Injection Leading to Node EscapeEPSS 0.3%CVE-2026-41163HIGHbubblewrap vulnerable to privilege escalation in setuid mode via ptraceEPSS 0.3%CVE-2026-50570HIGHFission: Incomplete capability denylist in Environment/Function PodSpec validation allows tenant-added CAP_SYS_TIME and cross-tenant node wall-clock corruptionEPSS 0.3%CVE-2026-50564CRITICALFission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escapeEPSS 0.3%CVE-2020-35593—BMC PATROL Agent through 20.08.00 allows local privilege escalation via vectors involving pconfig +RESTART -host.EPSS 0.3%CVE-2024-6359MEDIUMPrivilege escalation vulnerabilityEPSS 0.3%CVE-2025-46364CRITICALDell CloudLink, versions prior to 8.1.1, contain a vulnerability where a privileged user with known password can run CLI Escape VulnerabilitEPSS 0.3%CVE-2026-1750HIGHEcwid by Lightspeed Ecommerce Shopping Cart <= 7.0.7 - Authenticated (Subscriber+) Privilege Escalation via ec_store_admin_accessEPSS 0.3%CVE-2026-58054HIGHMyBB - Privilege Escalation from Limited ACP User Management to AdministratorEPSS 0.3%CVE-2022-32781MEDIUMThis issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5, Security UpdateEPSS 0.3%CVE-2022-22187HIGHJIMS: Local Privilege Escalation vulnerability via repair functionalityEPSS 0.3%