CWE-269
Improper Privilege Management
Description
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-122 · CAPEC-233 · CAPEC-58
CVEs mapped to this weakness (1,039)
page 47 of 52| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-29526 | — | 0.00 | — | 0.03 | Jun 22, 2022 | Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter, the Faccessat function could incorrectly report that a file is accessible. | ||
| CVE-2022-2063 | 0.00 | — | 0.01 | Jun 13, 2022 | Improper Privilege Management in GitHub repository nocodb/nocodb prior to 0.91.7+. | |||
| CVE-2022-31267 | 0.00 | — | 0.18 | May 21, 2022 | Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext 'attacker@example.com\n\trole = "#admin"' value. | |||
| CVE-2022-29179 | 0.00 | — | 0.00 | May 20, 2022 | Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Prior to versions 1.9.16, 1.10.11, and 1.11.15, if an attacker is able to perform a container escape of a container running as root on a host where… | |||
| CVE-2021-23265 | 0.00 | — | 0.01 | May 16, 2022 | A logged-in and authenticated user with a Reviewer Role may lock a content item. | |||
| CVE-2022-1397 | — | 0.00 | — | 0.01 | May 10, 2022 | API Privilege Escalation in GitHub repository alextselegidis/easyappointments prior to 1.5.0. Full system takeover. | ||
| CVE-2022-29164 | 0.00 | — | 0.01 | May 5, 2022 | Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact… | |||
| CVE-2021-4200 | 0.00 | — | 0.01 | May 2, 2022 | A Improper Privilege Management vulnerability in SUSE Rancher allows write access to the Catalog for any user when restricted-admin role is enabled. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4. | |||
| CVE-2021-36784 | 0.00 | — | 0.01 | May 2, 2022 | A Improper Privilege Management vulnerability in SUSE Rancher allows users with the restricted-admin role to escalate to full admin. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4. | |||
| CVE-2022-1227 | 0.00 | — | 0.04 | Apr 29, 2022 | A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the… | |||
| CVE-2022-1332 | 0.00 | — | 0.01 | Apr 13, 2022 | One of the API in Mattermost version 6.4.1 and earlier fails to properly protect the permissions, which allows the authenticated members with restricted custom admin role to bypass the restrictions and view the server logs and server config.json file contents. | |||
| CVE-2022-24783 | 0.00 | — | 0.01 | Mar 25, 2022 | Deno is a runtime for JavaScript and TypeScript. The versions of Deno between release 1.18.0 and 1.20.2 (inclusive) are vulnerable to an attack where a malicious actor controlling the code executed in a Deno runtime could bypass all permission checks and execute arbitrary shell… | |||
| CVE-2022-24768 | 0.00 | — | 0.01 | Mar 23, 2022 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All unpatched versions of Argo CD starting with 1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level. Versions starting… | |||
| CVE-2022-23708 | 0.00 | — | 0.01 | Mar 3, 2022 | A flaw was discovered in Elasticsearch 7.17.0’s upgrade assistant, in which upgrading from version 6.x to 7.x would disable the in-built protections on the security index, allowing authenticated users with “*” index permissions access to this index. | |||
| CVE-2022-0611 | 0.00 | — | 0.01 | Feb 15, 2022 | Missing Authorization in Packagist snipe/snipe-it prior to 5.3.11. | |||
| CVE-2022-0579 | 0.00 | — | 0.01 | Feb 14, 2022 | Missing Authorization in Packagist snipe/snipe-it prior to 5.3.9. | |||
| CVE-2021-45330 | 0.00 | — | 0.01 | Feb 9, 2022 | An issue exsits in Gitea through 1.15.7, which could let a malicious user gain privileges due to client side cookies not being deleted and the session remains valid on the server side for reuse. | |||
| CVE-2022-0338 | — | 0.00 | — | 0.01 | Jan 25, 2022 | Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3. | ||
| CVE-2021-45230 | 0.00 | — | 0.02 | Jan 20, 2022 | In Apache Airflow prior to 2.2.0. This CVE applies to a specific case where a User who has "can_create" permissions on DAG Runs can create Dag Runs for dags that they don't have "edit" permissions for. | |||
| CVE-2022-21699 | 0.00 | — | 0.01 | Jan 19, 2022 | IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to an arbitrary code execution vulnerability achieved by not properly managing… |
- CVE-2022-29526Jun 22, 2022risk 0.00cvss —epss 0.03
Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter, the Faccessat function could incorrectly report that a file is accessible.
- CVE-2022-2063Jun 13, 2022risk 0.00cvss —epss 0.01
Improper Privilege Management in GitHub repository nocodb/nocodb prior to 0.91.7+.
- CVE-2022-31267May 21, 2022risk 0.00cvss —epss 0.18
Gitblit 1.9.2 allows privilege escalation via the Config User Service: a control character can be placed in a profile data field, such as an emailAddress%3Atext 'attacker@example.com\n\trole = "#admin"' value.
- CVE-2022-29179May 20, 2022risk 0.00cvss —epss 0.00
Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Prior to versions 1.9.16, 1.10.11, and 1.11.15, if an attacker is able to perform a container escape of a container running as root on a host where…
- CVE-2021-23265May 16, 2022risk 0.00cvss —epss 0.01
A logged-in and authenticated user with a Reviewer Role may lock a content item.
- CVE-2022-1397May 10, 2022risk 0.00cvss —epss 0.01
API Privilege Escalation in GitHub repository alextselegidis/easyappointments prior to 1.5.0. Full system takeover.
- CVE-2022-29164May 5, 2022risk 0.00cvss —epss 0.01
Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact…
- CVE-2021-4200May 2, 2022risk 0.00cvss —epss 0.01
A Improper Privilege Management vulnerability in SUSE Rancher allows write access to the Catalog for any user when restricted-admin role is enabled. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4.
- CVE-2021-36784May 2, 2022risk 0.00cvss —epss 0.01
A Improper Privilege Management vulnerability in SUSE Rancher allows users with the restricted-admin role to escalate to full admin. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4.
- CVE-2022-1227Apr 29, 2022risk 0.00cvss —epss 0.04
A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the…
- CVE-2022-1332Apr 13, 2022risk 0.00cvss —epss 0.01
One of the API in Mattermost version 6.4.1 and earlier fails to properly protect the permissions, which allows the authenticated members with restricted custom admin role to bypass the restrictions and view the server logs and server config.json file contents.
- CVE-2022-24783Mar 25, 2022risk 0.00cvss —epss 0.01
Deno is a runtime for JavaScript and TypeScript. The versions of Deno between release 1.18.0 and 1.20.2 (inclusive) are vulnerable to an attack where a malicious actor controlling the code executed in a Deno runtime could bypass all permission checks and execute arbitrary shell…
- CVE-2022-24768Mar 23, 2022risk 0.00cvss —epss 0.01
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All unpatched versions of Argo CD starting with 1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level. Versions starting…
- CVE-2022-23708Mar 3, 2022risk 0.00cvss —epss 0.01
A flaw was discovered in Elasticsearch 7.17.0’s upgrade assistant, in which upgrading from version 6.x to 7.x would disable the in-built protections on the security index, allowing authenticated users with “*” index permissions access to this index.
- CVE-2022-0611Feb 15, 2022risk 0.00cvss —epss 0.01
Missing Authorization in Packagist snipe/snipe-it prior to 5.3.11.
- CVE-2022-0579Feb 14, 2022risk 0.00cvss —epss 0.01
Missing Authorization in Packagist snipe/snipe-it prior to 5.3.9.
- CVE-2021-45330Feb 9, 2022risk 0.00cvss —epss 0.01
An issue exsits in Gitea through 1.15.7, which could let a malicious user gain privileges due to client side cookies not being deleted and the session remains valid on the server side for reuse.
- CVE-2022-0338Jan 25, 2022risk 0.00cvss —epss 0.01
Insertion of Sensitive Information into Log File in Conda loguru prior to 0.5.3.
- CVE-2021-45230Jan 20, 2022risk 0.00cvss —epss 0.02
In Apache Airflow prior to 2.2.0. This CVE applies to a specific case where a User who has "can_create" permissions on DAG Runs can create Dag Runs for dags that they don't have "edit" permissions for.
- CVE-2022-21699Jan 19, 2022risk 0.00cvss —epss 0.01
IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to an arbitrary code execution vulnerability achieved by not properly managing…