VYPR

CWE-269

Improper Privilege Management

ClassDraftLikelihood: Medium

Description

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-122 · CAPEC-233 · CAPEC-58

CVEs mapped to this weakness (1,039)

page 32 of 52
  • CVE-2026-7977MedMay 6, 2026
    risk 0.41cvss 6.3epss 0.00

    Inappropriate implementation in Canvas in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)

  • CVE-2026-7971MedMay 6, 2026
    risk 0.41cvss 6.3epss 0.00

    Inappropriate implementation in ORB in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)

  • CVE-2026-35154MedApr 20, 2026
    risk 0.41cvss 6.3epss 0.00

    Dell PowerProtect Data Domain appliances, versions 7.7.1.0 through 8.7.0.0, LTS2025 release versions 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an improper privilege management vulnerability. A high privileged attacker with local…

  • CVE-2026-2563MedFeb 16, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in JingDong JD Cloud Box AX6600 up to 4.5.1.r4533. Affected is the function set_stcreenen_deabled_status/get_status of the file /f/service/controlDevice of the component jdcapp_rpc. The manipulation leads to Remote Privilege Escalation. It is…

  • CVE-2026-2562MedFeb 16, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in JingDong JD Cloud Box AX6600 up to 4.5.1.r4533. This impacts the function cast_streen of the file /jdcapi of the component jdcweb_rpc. Executing a manipulation of the argument File can lead to Remote Privilege Escalation. The attack may be…

  • CVE-2026-2561MedFeb 16, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in JingDong JD Cloud Box AX6600 up to 4.5.1.r4533. This affects the function web_get_ddns_uptime of the file /jdcapi of the component jdcweb_rpc. Performing a manipulation results in Remote Privilege Escalation. The attack is possible to be carried out…

  • CVE-2025-8107MedJul 24, 2025
    risk 0.41cvss 6.3epss 0.00

    In OceanBase's Oracle tenant mode, a malicious user with specific privileges can achieve privilege escalation to SYS-level access by executing carefully crafted commands. This vulnerability only affects OceanBase tenants in Oracle mode. Tenants in MySQL mode are unaffected.

  • CVE-2017-14124MedSep 13, 2017
    risk 0.41cvss 6.3epss 0.00

    In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used, it is possible to start applications other than defined, even if the user does not have permissions to change application definitions.

  • CVE-2017-11438MedAug 2, 2017
    risk 0.41cvss 6.3epss 0.01

    GitLab Community Edition (CE) and Enterprise Edition (EE) before 9.0.11, 9.1.8, 9.2.8 allow an authenticated user with the ability to create a group to add themselves to any project that is inside a subgroup.

  • CVE-2017-7489MedMay 15, 2017
    risk 0.41cvss 6.3epss 0.01

    In Moodle 2.x and 3.x, remote authenticated users can take ownership of arbitrary blogs by editing an external blog link.

  • CVE-2026-11229MedJun 4, 2026
    risk 0.40cvss 6.1epss 0.00

    Inappropriate implementation in Enterprise in Google Chrome prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via physical access to the device. (Chromium security severity: Low)

  • CVE-2026-0055MedJun 1, 2026
    risk 0.40cvss 6.2epss 0.00

    In createSessionInternal of PackageInstallerService.java, there is a possible to update a Device Policy Controller (DPC) into an invalid directory due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User…

  • CVE-2026-0046MedJun 1, 2026
    risk 0.40cvss 6.2epss 0.00

    In InputInterceptor of Letterbox.java, there is a possible way to trick a user into accepting a permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2026-32323HigMay 19, 2026
    risk 0.40cvss 7.3epss 0.00

    Mullvad VPN is a VPN client app for desktop and mobile. When using macOS with versions 2026.1 and below, Mullvad VPN may allow local privilege escalation during installation or upgrade. The installer package executes binaries from /Applications/Mullvad VPN.app without verifying…

  • CVE-2026-45395HigMay 15, 2026
    risk 0.40cvss 7.2epss 0.00

    Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, the tool update endpoint (POST /api/v1/tools/id/{id}/update) is missing the workspace.tools permission check that is present on the tool create endpoint. This…

  • CVE-2026-33906HigMar 27, 2026
    risk 0.40cvss 7.2epss 0.00

    Ella Core is a 5G core designed for private networks. Prior to version 1.7.0, the NetworkManager role was granted backup and restore permission. The restore endpoint accepted any valid SQLite file without verifying its contents. A NetworkManager could replace the production…

  • CVE-2025-54595HigAug 1, 2025
    risk 0.40cvss 7.3epss 0.00

    Pearcleaner is a free, source-available and fair-code licensed mac app cleaner. The PearcleanerHelper is a privileged helper tool bundled with the Pearcleaner application. It is registered and activated only after the user approves a system prompt to allow privileged operations.…

  • CVE-2024-13835HigMar 8, 2025
    risk 0.40cvss 7.2epss 0.00

    The Post Meta Data Manager plugin for WordPress is vulnerable to multisite privilege escalation in all versions up to, and including, 1.4.4. This is due to the plugin not properly verifying the existence of a multisite installation prior to allowing user meta to be…

  • CVE-2023-32194HigOct 16, 2024
    risk 0.40cvss 7.2epss 0.00

    A vulnerability has been identified when granting a create or * global role for a resource type of "namespaces"; no matter the API group, the subject will receive * permissions for core namespaces. This can lead to someone being capable of accessing, creating, updating, or…

  • CVE-2024-33393MedMay 1, 2024
    risk 0.40cvss 6.2epss 0.00

    An issue in spidernet-io spiderpool v.0.9.3 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component.