Falhas do tipo CWE-267
64 resultadosCVE-2022-38124MEDIUMUnwanted debug toolEPSS 0.5%CVE-2021-44476MEDIUMA sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to read localEPSS 0.5%CVE-2025-26467HIGHApache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions (4.0.16 only)EPSS 0.5%CVE-2023-32457HIGH
Dell PowerScale OneFS, versions 8.2.2.x-9.5.0.x, contains an improper privilege management vulnerability. A remote attacker with low privilEPSS 0.5%CVE-2023-43746HIGHBIG-IP Appliance mode external monitor vulnerabilityEPSS 0.4%CVE-2023-27895MEDIUMInformation Disclosure vulnerability in SAP Authenticator for AndroidEPSS 0.4%CVE-2026-29646CRITICALIn OpenXiangShan NEMU prior to 55295c4, when running with RVH (Hypervisor extension) enabled, a VS-mode guest write to the supervisor interrEPSS 0.4%CVE-2025-7030MEDIUMTwo-factor Authentication (TFA) - Less critical - Access bypass - SA-CONTRIB-2025-085EPSS 0.4%CVE-2025-14349HIGHBusiness Logic Error in Universal Software's FlexCity/KioskEPSS 0.4%CVE-2025-7691MEDIUMPrivilege Defined With Unsafe Actions in GitLabEPSS 0.3%CVE-2026-2459HIGHA vulnerability exists in REB500 for an authenticated user with Installer role to access and alter the contents of directories that the roleEPSS 0.3%CVE-2019-14865MEDIUMA flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example byEPSS 0.3%CVE-2026-6816MEDIUMTFA Basic Plugins - Access BypassEPSS 0.3%CVE-2025-61754MEDIUMVulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Web Service API). Supported versions that are affected areEPSS 0.3%CVE-2017-2616MEDIUMA race condition was found in util-linux before 2.32.1 in the way su handled the management of child processes. A local authenticated attackEPSS 0.3%CVE-2025-62289MEDIUMVulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Filesystems). The supported version that is afEPSS 0.3%CVE-2026-2460HIGHA vulnerability exists in REB500 for an authenticated user with low-level privileges to access and alter the content of directories by usingEPSS 0.3%CVE-2025-62288MEDIUMVulnerability in the Oracle Health Sciences Data Management Workbench product of Oracle Health Sciences Applications (component: Logger). SEPSS 0.3%CVE-2026-27314HIGHApache Cassandra: Privilege escalation via ADD IDENTITY authorization bypassEPSS 0.3%CVE-2024-7571HIGHIncorrect permissions in Ivanti Secure Access Client before 22.7R4 allows a local authenticated attacker to escalate their privileges.EPSS 0.3%