VYPR

CWE-269

Improper Privilege Management

ClassDraftLikelihood: Medium

Description

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-122 · CAPEC-233 · CAPEC-58

CVEs mapped to this weakness (1,039)

page 47 of 52
  • CVE-2022-29526Jun 22, 2022
    risk 0.00cvss epss 0.03

    Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter, the Faccessat function could incorrectly report that a file is accessible.

  • CVE-2022-2063Jun 13, 2022
    risk 0.00cvss epss 0.01

    Improper Privilege Management in GitHub repository nocodb/nocodb prior to 0.91.7+.

  • CVE-2022-31267May 21, 2022
    risk 0.00cvss epss 0.18

    Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext 'attacker@example.com\n\trole = "#admin"' value.

  • CVE-2022-29179May 20, 2022
    risk 0.00cvss epss 0.00

    Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Prior to versions 1.9.16, 1.10.11, and 1.11.15, if an attacker is able to perform a container escape of a container running as root on a host where…

  • CVE-2021-23265May 16, 2022
    risk 0.00cvss epss 0.01

    A logged-in and authenticated user with a Reviewer Role may lock a content item.

  • CVE-2022-1397May 10, 2022
    risk 0.00cvss epss 0.01

    API Privilege Escalation in GitHub repository alextselegidis/easyappointments prior to 1.5.0. Full system takeover.

  • CVE-2022-29164May 5, 2022
    risk 0.00cvss epss 0.01

    Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact…

  • CVE-2021-4200May 2, 2022
    risk 0.00cvss epss 0.01

    A Improper Privilege Management vulnerability in SUSE Rancher allows write access to the Catalog for any user when restricted-admin role is enabled. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4.

  • CVE-2021-36784May 2, 2022
    risk 0.00cvss epss 0.01

    A Improper Privilege Management vulnerability in SUSE Rancher allows users with the restricted-admin role to escalate to full admin. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4.

  • CVE-2022-1227Apr 29, 2022
    risk 0.00cvss epss 0.04

    A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the…

  • CVE-2022-1332Apr 13, 2022
    risk 0.00cvss epss 0.01

    One of the API in Mattermost version 6.4.1 and earlier fails to properly protect the permissions, which allows the authenticated members with restricted custom admin role to bypass the restrictions and view the server logs and server config.json file contents.

  • CVE-2022-24783Mar 25, 2022
    risk 0.00cvss epss 0.01

    Deno is a runtime for JavaScript and TypeScript. The versions of Deno between release 1.18.0 and 1.20.2 (inclusive) are vulnerable to an attack where a malicious actor controlling the code executed in a Deno runtime could bypass all permission checks and execute arbitrary shell…

  • CVE-2022-24768Mar 23, 2022
    risk 0.00cvss epss 0.01

    Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All unpatched versions of Argo CD starting with 1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level. Versions starting…

  • CVE-2022-23708Mar 3, 2022
    risk 0.00cvss epss 0.01

    A flaw was discovered in Elasticsearch 7.17.0’s upgrade assistant, in which upgrading from version 6.x to 7.x would disable the in-built protections on the security index, allowing authenticated users with “*” index permissions access to this index.

  • CVE-2022-0611Feb 15, 2022
    risk 0.00cvss epss 0.01

    Missing Authorization in Packagist snipe/snipe-it prior to 5.3.11.

  • CVE-2022-0579Feb 14, 2022
    risk 0.00cvss epss 0.01

    Missing Authorization in Packagist snipe/snipe-it prior to 5.3.9.

  • CVE-2021-45330Feb 9, 2022
    risk 0.00cvss epss 0.01

    An issue exsits in Gitea through 1.15.7, which could let a malicious user gain privileges due to client side cookies not being deleted and the session remains valid on the server side for reuse.

  • CVE-2022-0338Jan 25, 2022
    risk 0.00cvss epss 0.01

    Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3.

  • CVE-2021-45230Jan 20, 2022
    risk 0.00cvss epss 0.02

    In Apache Airflow prior to 2.2.0. This CVE applies to a specific case where a User who has "can_create" permissions on DAG Runs can create Dag Runs for dags that they don't have "edit" permissions for.

  • CVE-2022-21699Jan 19, 2022
    risk 0.00cvss epss 0.01

    IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to an arbitrary code execution vulnerability achieved by not properly managing…