Weaknesses of type CWE-282
28 resultsCVE-2023-0386HIGHA flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the LinuxEPSS 7.9%KEVCVE-2026-23514HIGHKiteworks Core before 9.2.2 is vulnerable to Improper Ownership ManagementEPSS 1.0%CVE-2024-8949MEDIUMSourceCodester Online Eyewear Shop Cart Content Master.php improper ownership managementEPSS 0.7%CVE-2024-3383HIGHPAN-OS: Improper Group Membership Change Vulnerability in Cloud Identity Engine (CIE)EPSS 0.6%CVE-2020-10632HIGHICSA-20-140-02 Emerson OpenEnterpriseEPSS 0.5%CVE-2022-29187HIGHBypass of safe.directory protections in GitEPSS 0.4%CVE-2023-7226MEDIUMmeetyoucrop big-whale Admin Module all.api improper ownership managementEPSS 0.4%CVE-2023-0989MEDIUMImproper Ownership Management in GitLabEPSS 0.4%CVE-2024-39755HIGHA privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lEPSS 0.4%CVE-2024-45103MEDIUMA valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileEPSS 0.3%CVE-2017-12189—It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handlinEPSS 0.3%CVE-2024-47816MEDIUMUsers can impersonate import requesters if their actor IDs coincide in ImportDumpEPSS 0.3%CVE-2025-32946MEDIUMPeerTube Arbitrary Playlist Creation via ActivityPub ProtocolEPSS 0.3%CVE-2024-43176MEDIUMIBM OpenPages information disclosureEPSS 0.3%CVE-2025-32945MEDIUMPeerTube Arbitrary Playlist Creation via REST APIEPSS 0.3%CVE-2024-13246MEDIUMNode Access Rebuild Progressive - Less critical - Access bypass - SA-CONTRIB-2024-010EPSS 0.3%CVE-2026-3867MEDIUMAn improper ownership management vulnerability has been identified in Moxa’s Secure Router. Because of improper ownership management, a low-EPSS 0.2%CVE-2022-0026MEDIUMCortex XDR Agent: Unintended Program Execution Leads to Local Privilege Escalation (PE) VulnerabilityEPSS 0.2%CVE-2024-13249MEDIUMNode Access Rebuild Progressive - Less critical - Access bypass - SA-CONTRIB-2024-013EPSS 0.2%CVE-2026-40214MEDIUMIn OpenStack Cyborg before 16.0.1, the Accelerator Request (ARQ) API does not enforce project ownership at any layer. The project_id column EPSS 0.2%