VYPR

CWE-269

Improper Privilege Management

ClassDraftLikelihood: Medium

Description

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-122 · CAPEC-233 · CAPEC-58

CVEs mapped to this weakness (1,039)

page 16 of 52
  • CVE-2016-2853HigMay 2, 2016
    risk 0.54cvss 7.8epss 0.01

    The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program.

  • CVE-2026-43886HigMay 11, 2026
    risk 0.53cvss 8.2epss 0.00

    Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.6.1, a logic error in OAuthInterface.validateScope() uses Array.some() to validate requested OAuth scopes, causing the function to accept the entire scope array if any single scope is valid. An…

  • CVE-2026-40317CriApr 18, 2026
    risk 0.53cvss 9.3epss 0.00

    NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 12 (JumpToUser) accepts an arbitrary entry point address from user-space registers without validation, allowing any Ring 3 user-mode process to jump to kernel…

  • CVE-2026-5373HigApr 7, 2026
    risk 0.53cvss 8.1epss 0.00

    An issue that allowed all-organization administrators to promote accounts to superuser status has been resolved. This is an instance of CWE-269: Improper Privilege Management, and has an estimated CVSS score of CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N (8.1 High). This issue…

  • CVE-2024-44250HigApr 2, 2026
    risk 0.53cvss 8.2epss 0.00

    A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.1. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.

  • CVE-2025-14975HigJan 29, 2026
    risk 0.53cvss 8.1epss 0.00

    The Custom Login Page Customizer WordPress plugin before 2.5.4 does not have a proper password reset process, allowing a few unauthenticated requests to reset the password of any user by knowing their username, such as administrator ones, and therefore gain access to their…

  • CVE-2025-11086HigOct 22, 2025
    risk 0.53cvss 8.1epss 0.00

    The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3.7. This is due to the plugin not properly validating a user's role prior to registering a user via the…

  • CVE-2025-8309HigAug 20, 2025
    risk 0.53cvss 8.1epss 0.00

    There is an improper privilege management vulnerability identified in ManageEngine's Asset Explorer, ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus products by Zohocorp. This vulnerability impacts Asset Explorer versions before 7710, ServiceDesk Plus versions…

  • CVE-2024-31502HigApr 26, 2024
    risk 0.53cvss 8.1epss 0.01

    An issue in Insurance Management System v.1.0.0 and before allows a remote attacker to escalate privileges via a crafted POST request to /admin/core/new_staff.

  • CVE-2024-24892HigMar 25, 2024
    risk 0.53cvss 8.1epss 0.01

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Improper Privilege Management vulnerability in openEuler migration-tools on Linux allows Command Injection, Restful Privilege Elevation. This vulnerability is associated with program…

  • CVE-2024-22752HigMar 7, 2024
    risk 0.53cvss 8.1epss 0.01

    Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain escalated privileges via use of crafted executable launched from the application installation directory.

  • CVE-2018-3682HigJul 10, 2018
    risk 0.53cvss 8.2epss 0.00

    BMC Firmware in Intel server boards, compute modules, and systems potentially allow an attacker with administrative privileges to make unauthorized read\writes to the SMBUS.

  • CVE-2016-10686HigJun 4, 2018
    risk 0.53cvss 8.1epss 0.02

    fis-sass-all is another libsass wrapper for node. fis-sass-all downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested resources with an attacker controlled copy if…

  • CVE-2016-10648HigJun 4, 2018
    risk 0.53cvss 8.1epss 0.02

    marionette-socket-host is a marionette-js-runner host for sending actions over a socket. marionette-socket-host downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested…

  • CVE-2016-10645HigJun 4, 2018
    risk 0.53cvss 8.1epss 0.02

    grunt-images is a grunt plugin for processing images. grunt-images downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if…

  • CVE-2016-10642HigJun 4, 2018
    risk 0.53cvss 8.1epss 0.02

    cmake installs the cmake x86 linux binaries. cmake downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is…

  • CVE-2016-10641HigJun 4, 2018
    risk 0.53cvss 8.1epss 0.01

    node-bsdiff-android downloads resources over HTTP, which leaves it vulnerable to MITM attacks.

  • CVE-2016-10633HigJun 1, 2018
    risk 0.53cvss 8.1epss 0.02

    dwebp-bin is a dwebp node.js wrapper that convert WebP into PNG. dwebp-bin downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled…

  • CVE-2016-10616HigJun 1, 2018
    risk 0.53cvss 8.1epss 0.01

    openframe-image is an Openframe extension which adds support for images via fbi. openframe-image downloads data resources over HTTP, which leaves it vulnerable to MITM attacks.

  • CVE-2016-10607HigJun 1, 2018
    risk 0.53cvss 8.1epss 0.02

    openframe-glsviewer is a Openframe extension which adds support for shaders via glslViewer. openframe-glsviewer downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested…