Fallos del tipo CWE-250
329 resultadosCVE-2025-62402MEDIUMApache Airflow: Airflow 3 API: /api/v2/dagReports executes DAG Python in APIEPSS 0.4%CVE-2026-30225MEDIUMOliveTin: RestartAction always runs actions as guestEPSS 0.4%CVE-2025-36048HIGHIBM webMethods Integration Sever code executionEPSS 0.4%CVE-2024-8266MEDIUMExecution with Unnecessary Privileges in GitLabEPSS 0.4%CVE-2024-7102CRITICALExecution with Unnecessary Privileges in GitLabEPSS 0.4%CVE-2026-44477CRITICALCloudNativePG: Metrics exporter allows privilege escalation to PostgreSQL superuser and OS RCEEPSS 0.4%CVE-2023-50015HIGHAn issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect acEPSS 0.4%CVE-2022-0071HIGHHotdog Container EscapeEPSS 0.4%CVE-2021-3101HIGHHotdog Container EscapeEPSS 0.4%CVE-2021-0223HIGHJunos OS: telnetd.real Local Privilege Escalation vulnerabilities in SUID binariesEPSS 0.4%CVE-2018-25078HIGHman-db before 2.8.5 on Gentoo allows local users (with access to the man user account) to gain root privileges because /usr/bin/mandb is exeEPSS 0.4%CVE-2022-41950MEDIUMPrivilege Escalation Vulnerability by wrong chmod paramEPSS 0.4%CVE-2022-0070HIGHLog4j hot patch package privilege escalationEPSS 0.4%CVE-2018-8853—Philips Brilliance CT devices operate user functions from within a contained kiosk in a Microsoft Windows operating system. Windows boots byEPSS 0.4%CVE-2021-34998HIGHThis vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Free Antivirus 20.2.0.0. An attEPSS 0.4%CVE-2020-10056—A vulnerability has been identified in License Management Utility (LMU) (All versions < V2.4). The lmgrd service of the affected applicationEPSS 0.4%CVE-2024-23743LOWNotion through 3.1.0 on macOS might allow code execution because of RunAsNode and enableNodeClilnspectArguments. NOTE: the vendor states "thEPSS 0.4%CVE-2026-46618MEDIUMFission builder accepts arbitrary buildcmd strings from Environment.spec.builder.command, allowing the builder pod to invoke arbitrary executablesEPSS 0.4%CVE-2024-20420MEDIUMCisco ATA 190 Series Analog Telephone Adapter Firmware Privilege Escalation VulnerabilityEPSS 0.4%CVE-2021-1118HIGHNVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where there is the potential to execute privileged oEPSS 0.4%