Fallos del tipo CWE-269
1775 resultadosCVE-2021-31581HIGHAkkadian Provisioning Manager Engine (PME) Shell Escape via 'vi' editor interfaceEPSS 1.2%CVE-2026-46333HIGHptrace: slightly saner 'get_dumpable()' logicEPSS 1.2%CVE-2022-43138CRITICALDolibarr Open Source ERP & CRM for Business before v14.0.1 allows attackers to escalate privileges via a crafted API.EPSS 1.2%CVE-2020-7509—A CWE-269: Improper privilege management (write) vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow aEPSS 1.2%CVE-2022-42735HIGHApache ShenYu Admin ultra viresEPSS 1.2%CVE-2018-19635—CA Service Desk Manager 14.1 and 17 contain a vulnerability that can allow a malicious actor to escalate privileges in the user interface.EPSS 1.2%CVE-2026-7465HIGHSpectra Gutenberg Blocks <= 2.19.25 - Authenticated (Contributor+) Remote Code Execution via Arbitrary PHP Function Call via Block AttributesEPSS 1.2%CVE-2024-38089CRITICALMicrosoft Defender for IoT Elevation of Privilege VulnerabilityEPSS 1.2%CVE-2021-24289—Store Locator Plus <= 5.5.14 - Authenticated Privilege EscalationEPSS 1.1%CVE-2022-29218HIGHUnauthorized takeover for new versions of some platform-specific gemsEPSS 1.1%CVE-2021-43835HIGHPrivilege escalation in the Sulu Admin panelEPSS 1.1%CVE-2024-31141MEDIUMApache Kafka Clients: Privilege escalation to filesystem read-access via automatic ConfigProviderEPSS 1.1%CVE-2024-26247MEDIUMMicrosoft Edge (Chromium-based) Security Feature Bypass VulnerabilityEPSS 1.1%CVE-2019-11270HIGHUAA clients.write vulnerabilityEPSS 1.1%CVE-2023-27654CRITICALAn issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a escalation of privileges via the TTMultiProvider component.EPSS 1.1%CVE-2022-30526HIGHA privilege escalation vulnerability was identified in the CLI command of Zyxel USG FLEX 100(W) firmware versions 4.50 through 5.30, USG FLEEPSS 1.1%CVE-2022-31166HIGHXWiki.WebHome vulnerable to Improper Privilege Management in XWiki resolving groupsEPSS 1.1%CVE-2023-5408HIGHOpenshift: modification of node role labelsEPSS 1.1%CVE-2022-23604HIGHPrivilege escalation in DefenderEPSS 1.1%CVE-2023-22946MEDIUMApache Spark proxy-user privilege escalation from malicious configuration classEPSS 1.1%