Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
administrator privileges vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2023-40307
An attacker with standard privileges on macOS when requesting administrator privileges from the application can submit input which causes a buffer overflow resulting in a crash of the application. This could make the application unavailable and allow reading or modification of da...
Sap Privileges
NA
CVE-2012-0304
Symantec LiveUpdate Administrator prior to 2.3.1 uses weak permissions (Everyone: Full Control) for the installation directory, which allows local users to gain privileges via a Trojan horse file.
Symantec Liveupdate Administrator 1.5.7.19
Symantec Liveupdate Administrator 1.5.4
Symantec Liveupdate Administrator
Symantec Liveupdate Administrator 2.2.2.9
Symantec Liveupdate Administrator 1.5.3.21
Symantec Liveupdate Administrator 2.2.2
Symantec Liveupdate Administrator 2.2.1
Symantec Liveupdate Administrator 2.1.3
Symantec Liveupdate Administrator 2.1.2
Symantec Liveupdate Administrator 2.1.0
7.2
CVSSv3
CVE-2023-34420
A valid, authenticated LXCA user with elevated privileges may be able to execute command injections through crafted calls to a specific web API.
Lenovo Xclarity Administrator
6.5
CVSSv3
CVE-2023-34421
A valid, authenticated LXCA user with elevated privileges may be able to replace filesystem data through a specifically crafted web API call due to insufficient input validation.
Lenovo Xclarity Administrator
6.5
CVSSv3
CVE-2023-34422
A valid, authenticated LXCA user with elevated privileges may be able to delete folders in the LXCA filesystem through a specifically crafted web API call due to insufficient input validation.
Lenovo Xclarity Administrator
7.8
CVSSv3
CVE-2017-3745
In Lenovo XClarity Administrator (LXCA) prior to 1.3.0, if service data is downloaded from LXCA, a non-administrative user may have access to password information for users that have previously authenticated to the LXCA's internal LDAP server, including administrative accoun...
Lenovo Xclarity Administrator
4.9
CVSSv3
CVE-2021-21514
Dell EMC OpenManage Server Administrator (OMSA) versions 9.5 and prior contain a path traversal vulnerability. A remote user with admin privileges could potentially exploit this vulnerability to view arbitrary files on the target system by sending a specially crafted URL request.
Dell Openmanage Server Administrator
1 Github repository
7.8
CVSSv3
CVE-2022-34396
Dell OpenManage Server Administrator (OMSA) version 10.3.0.0 and previous versions contains a DLL Injection Vulnerability. A local low privileged authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operatin...
Dell Openmanage Server Administrator
7.4
CVSSv3
CVE-2017-12410
It is possible to exploit a Time of Check & Time of Use (TOCTOU) vulnerability by winning a race condition when Kaseya Virtual System Administrator agent 9.3.0.11 and previous versions tries to execute its binaries from working and/or temporary folders. Successful exploitatio...
Kaseya Virtual System Administrator
4.9
CVSSv3
CVE-2019-3720
Dell EMC Open Manage System Administrator (OMSA) versions before 9.3.0 contain a Directory Traversal Vulnerability. A remote authenticated malicious user with admin privileges could potentially exploit this vulnerability to gain unauthorized access to the file system by exploitin...
Dell Emc Openmanage Server Administrator
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »