Weaknesses of type CWE-269
1,785 resultsCVE-2021-25418—Improper component protection vulnerability in Samsung Internet prior to version 14.0.1.62 allows untrusted applications to execute arbitrarEPSS 0.2%CVE-2026-45043CRITICALRustFS: ImportIam Allows Creation of Backdoor Service Accounts Under Any Parent Including RootEPSS 0.2%CVE-2026-6769HIGHPrivilege escalation in the Debugger componentEPSS 0.2%CVE-2021-43768MEDIUMIn Malwarebytes For Teams v.1.0.990 and before and fixed in v.1.0.1003 and later a privilege escalation can occur via the COM interface runnEPSS 0.2%CVE-2026-11108HIGHInappropriate implementation in NFC in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalaEPSS 0.2%CVE-2025-57759MEDIUMContao has improper privilege management for page and article fieldsEPSS 0.2%CVE-2026-9999HIGHInappropriate implementation in ANGLE in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inEPSS 0.2%CVE-2023-52093HIGHAn exposed dangerous function vulnerability in the Trend Micro Apex One agent could allow a local attacker to escalate privileges on affecteEPSS 0.2%CVE-2026-40317CRITICALNovumOS has Privilege Escalation in the Syscall InterfaceEPSS 0.2%CVE-2024-22068MEDIUMWeak Password Vulnerability in ZTE ZSR V2 Intelligent Multi Service RouterEPSS 0.2%CVE-2024-6677HIGHPrivilege escalation in uberAgentEPSS 0.2%CVE-2020-12615—An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When adding the Add Admin token to a process, and speciEPSS 0.2%CVE-2020-7274MEDIUMENS elevated permissions vulnerabilityEPSS 0.2%CVE-2022-27677HIGH
Failure to validate privileges during installation of AMD Ryzen™ Master may allow an attacker with low
privileges to modify files potentialEPSS 0.2%CVE-2024-36056MEDIUMHw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user-mode processes to arbitrarily map physical memory via IOCTL 0x9c40649EPSS 0.2%CVE-2023-5847MEDIUM
Under certain conditions, a low privileged attacker could load a specially crafted file during installation or upgrade to escalate privilegEPSS 0.2%CVE-2025-66315MEDIUMZTE MF258K Pro Version Server has a Configuration Defect VulnerabilityEPSS 0.2%CVE-2025-55627MEDIUMInsufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allows auEPSS 0.2%CVE-2024-0049HIGHIn multiple locations, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privileEPSS 0.2%CVE-2024-54560MEDIUMA logic issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, watchOS 11. A maliEPSS 0.2%