Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
administrator privileges vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2023-40307
An attacker with standard privileges on macOS when requesting administrator privileges from the application can submit input which causes a buffer overflow resulting in a crash of the application. This could make the application unavailable and allow reading or modification of da...
Sap Privileges
NA
CVE-2012-0304
Symantec LiveUpdate Administrator prior to 2.3.1 uses weak permissions (Everyone: Full Control) for the installation directory, which allows local users to gain privileges via a Trojan horse file.
Symantec Liveupdate Administrator
Symantec Liveupdate Administrator 1.5.3.21
Symantec Liveupdate Administrator 1.5.4
Symantec Liveupdate Administrator 1.5.7.19
Symantec Liveupdate Administrator 2.1.0
Symantec Liveupdate Administrator 2.1.2
Symantec Liveupdate Administrator 2.1.3
Symantec Liveupdate Administrator 2.2.1
Symantec Liveupdate Administrator 2.2.2
Symantec Liveupdate Administrator 2.2.2.9
4.3
CVSSv3
CVE-2024-45103
A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges.
Lenovo Xclarity Administrator
7.2
CVSSv3
CVE-2023-34420
A valid, authenticated LXCA user with elevated privileges may be able to execute command injections through crafted calls to a specific web API.
Lenovo Xclarity Administrator
6.5
CVSSv3
CVE-2023-34421
A valid, authenticated LXCA user with elevated privileges may be able to replace filesystem data through a specifically crafted web API call due to insufficient input validation.
Lenovo Xclarity Administrator
6.5
CVSSv3
CVE-2024-45104
A valid, authenticated LXCA user without sufficient privileges may be able to use the device identifier to modify an LXCA managed device through a specially crafted web API call.
Lenovo Xclarity Administrator
6.5
CVSSv3
CVE-2023-34422
A valid, authenticated LXCA user with elevated privileges may be able to delete folders in the LXCA filesystem through a specifically crafted web API call due to insufficient input validation.
Lenovo Xclarity Administrator
7.8
CVSSv3
CVE-2017-3745
In Lenovo XClarity Administrator (LXCA) prior to 1.3.0, if service data is downloaded from LXCA, a non-administrative user may have access to password information for users that have previously authenticated to the LXCA's internal LDAP server, including administrative accoun...
Lenovo Xclarity Administrator
4.9
CVSSv3
CVE-2021-21514
Dell EMC OpenManage Server Administrator (OMSA) versions 9.5 and prior contain a path traversal vulnerability. A remote user with admin privileges could potentially exploit this vulnerability to view arbitrary files on the target system by sending a specially crafted URL request.
Dell Openmanage Server Administrator
1 Github repository
7.8
CVSSv3
CVE-2022-34396
Dell OpenManage Server Administrator (OMSA) version 10.3.0.0 and previous versions contains a DLL Injection Vulnerability. A local low privileged authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operatin...
Dell Openmanage Server Administrator
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
local
IMAP
CVE-2024-8504
CVE-2024-42327
CVE-2024-11904
CVE-2024-47107
CVE-2024-53143
XML injection
CVE-2024-54750
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »