Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
administrator privileges vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2018-19410
PRTG Network Monitor prior to 18.2.40.1683 allows remote unauthenticated malicious users to create users with read-write privileges (including administrator). A remote unauthenticated user can craft an HTTP request and override attributes of the 'include' directive in /...
Paessler Prtg Network Monitor
2 Github repositories
578
VMScore
CVE-2018-0336
A vulnerability in the batch provisioning feature of Cisco Prime Collaboration Provisioning could allow an authenticated, remote malicious user to escalate privileges to the Administrator level. The vulnerability is due to insufficient authorization enforcement on batch processin...
Cisco Prime Collaboration 12.1
NA
CVE-2022-36670
PCProtect Endpoint prior to v5.17.470 for Microsoft Windows lacks tamper protection, allowing authenticated attackers with Administrator privileges to modify processes within the application and escalate privileges to SYSTEM via a crafted executable.
Pcprotect Endpoint
668
VMScore
CVE-2020-10181
goform/formEMR30 in Sumavision Enhanced Multimedia Router (EMR) 3.0.4.27 allows creation of arbitrary users with elevated privileges (administrator) on a device, as demonstrated by a setString=new_user<*1*>administrator<*1*>123456 request.
Sumavision Enhanced Multimedia Router Firmware 3.0.4.27
1 Github repository
365
VMScore
CVE-2015-3202
fusermount in FUSE prior to 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT_MTAB environment variable that is used by mount's debugging feature.
Debian Debian Linux 8.0
Fuse Project Fuse
1 EDB exploit
711
VMScore
CVE-2014-0038
The compat_sys_recvmmsg function in net/compat.c in the Linux kernel prior to 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter.
Linux Linux Kernel
Opensuse Opensuse 12.3
4 EDB exploits
4 Github repositories
NA
CVE-2022-2332
A local unprivileged attacker may escalate to administrator privileges in Honeywell SoftMaster version 4.51, due to insecure permission assignment.
Honeywell Softmaster 4.51
801
VMScore
CVE-2022-32973
An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges.
Tenable Nessus
1000
VMScore
CVE-2003-0560
SQL injection vulnerability in shopexd.asp for VP-ASP allows remote malicious users to gain administrator privileges via the id parameter.
Virtual Programming Vp-asp 5.0
2 EDB exploits
668
VMScore
CVE-2005-1867
Symantec Brightmail AntiSpam prior to 6.0.2 has a hard-coded database administrator password, which allows remote malicious users to gain privileges.
Symantec Brightmail Antispam 4.0
Symantec Brightmail Antispam 6.0.1
Symantec Brightmail Antispam 5.5
Symantec Brightmail Antispam 6.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »