VYPR

CWE-269

Improper Privilege Management

ClassDraftLikelihood: Medium

Description

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-122 · CAPEC-233 · CAPEC-58

CVEs mapped to this weakness (1,039)

page 10 of 52
  • CVE-2025-11923HigNov 13, 2025
    risk 0.57cvss 8.8epss 0.00

    The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to privilege escalation. This is due to the plugin not properly validating a user's identity prior to allowing them to modify their own role via the REST API. The permission…

  • CVE-2025-11457CriNov 11, 2025
    risk 0.57cvss 9.8epss 0.00

    The EasyCommerce – AI-Powered, Fast & Beautiful WordPress Ecommerce Plugin plugin for WordPress is vulnerable to Privilege Escalation in versions 0.9.0-beta2 to 1.8.2. This is due to the /easycommerce/v1/orders REST API endpoint not properly restricting the ability for users…

  • CVE-2025-11168HigNov 11, 2025
    risk 0.57cvss 8.8epss 0.00

    The Mementor Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.2.5. This is due to plugin not properly handling the user switch back function. This makes it possible for authenticated attackers, with Subscriber-level access…

  • CVE-2025-61429HigOct 29, 2025
    risk 0.57cvss 8.8epss 0.00

    An issue in NCR Atleos Terminal Manager (ConfigApp) v3.4.0 allows attackers to escalate privileges via a crafted request.

  • CVE-2025-11561HigOct 9, 2025
    risk 0.57cvss 8.8epss 0.01

    A flaw was found in the integration of Active Directory and the System Security Services Daemon (SSSD) on Linux systems. In default configurations, the Kerberos local authentication plugin (sssd_krb5_localauth_plugin) is enabled, but a fallback to the an2ln plugin is possible.…

  • CVE-2025-7779HigSep 30, 2025
    risk 0.57cvss 8.8epss 0.00

    Local privilege escalation due to insecure XPC service configuration. The following products are affected: Acronis True Image (macOS) before build 42389, Acronis True Image for SanDisk (macOS) before build 42198, Acronis True Image for Western Digital (macOS) before build 42197,…

  • CVE-2025-10657HigSep 26, 2025
    risk 0.57cvss epss 0.00

    In a hardened Docker environment, with Enhanced Container Isolation ( ECI https://docs.docker.com/enterprise/security/hardened-desktop/enhanced-container-isolation/ ) enabled, an administrator can utilize the command restrictions feature https://docs.docker.com/enterprise/securi…

  • CVE-2025-37123HigSep 16, 2025
    risk 0.57cvss 8.8epss 0.00

    A vulnerability in the command-line interface of HPE Aruba Networking EdgeConnect SD-WAN Gateways could allow an authenticated remote attacker to escalate privileges. Successful exploitation of this vulnerability may enable the attacker to execute arbitrary system commands with…

  • CVE-2025-9059HigSep 11, 2025
    risk 0.57cvss epss 0.00

    The Altiris Core Agent Updater package (AeXNSC.exe) is prone to an elevation of privileges vulnerability through DLL hijacking.

  • CVE-2025-6366HigAug 26, 2025
    risk 0.57cvss 8.8epss 0.00

    The Event List plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.0.4. This is due to the plugin not properly validating a user's capabilities prior to updating their profile in the el_update_profile() function. This makes it…

  • CVE-2025-8218HigAug 19, 2025
    risk 0.57cvss 8.8epss 0.00

    The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to privilege escalation via the 'change_role_member' parameter in all versions up to, and including, 3.5. This is due to a lack of restriction in the profile update role. This makes it…

  • CVE-2025-6080HigAug 16, 2025
    risk 0.57cvss 8.8epss 0.00

    The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to unauthorized admin account creation in all versions up to, and including, 67.7.0. This is due to the plugin not properly validating a user's capabilities prior to adding users. This makes it…

  • CVE-2025-37101HigJun 26, 2025
    risk 0.57cvss 8.7epss 0.00

    A potential security vulnerability has been identified in HPE OneView for VMware vCenter (OV4VC). This vulnerability could be exploited allowing an attacker with read only privilege to cause Vertical Privilege Escalation (operator can perform admin actions).

  • CVE-2025-5491HigJun 13, 2025
    risk 0.57cvss 8.8epss 0.01

    Acer ControlCenter contains Remote Code Execution vulnerability. The program exposes a Windows Named Pipe that uses a custom protocol to invoke internal functions. However, this Named Pipe is misconfigured, allowing remote users with low privileges to interact with it and access…

  • CVE-2025-4601HigJun 10, 2025
    risk 0.57cvss 8.8epss 0.04

    The "RH - Real Estate WordPress Theme" theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 4.4.0. This is due to the theme not properly restricting user roles that can be updated as part of the inspiry_update_profile() function. This…

  • CVE-2024-51392HigMay 29, 2025
    risk 0.57cvss 8.8epss 0.00

    An issue in OpenKnowledgeMaps Headstart v7 allows a remote attacker to escalate privileges via the url parameter of the getPDF.php component

  • CVE-2025-47282CriMay 19, 2025
    risk 0.57cvss 9.9epss 0.01

    Gardener External DNS Management is an environment to manage external DNS entries for a kubernetes cluster. A security vulnerability was discovered in Gardener's External DNS Management prior to version 0.23.6 that could allow a user with administrative privileges for a Gardener…

  • CVE-2024-8100HigMay 8, 2025
    risk 0.57cvss 8.7epss 0.01

    On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be used to gain admin privileges on CloudVision.

  • CVE-2025-4335HigMay 7, 2025
    risk 0.57cvss 8.8epss 0.00

    The Woocommerce Multiple Addresses plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.7.1. This is due to insufficient restrictions on user meta that can be updated through the save_multiple_shipping_addresses() function. This…

  • CVE-2025-3852HigMay 7, 2025
    risk 0.57cvss 8.8epss 0.00

    The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to privilege escalation via account takeover in versions 2.0.0 to 2.6.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email & password through the update()…