CVE Daily
← All tags

Tag: Privilege Escalation

All CVEs associated with "Privilege Escalation". Page 66/66 • 7822 CVEs.

Subscribe CVEs: RSS for “Privilege Escalation”  ·  RSS (High+Critical only)

About “Privilege Escalation”

A curated feed of “Privilege Escalation”-related CVEs appears below. We currently track 7822 CVEs for this tag (all time). In the last 365 days, 1227 were published. Average CVSS is 7.7 (all time; 7.9 over 365d), and 84% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-269 - Improper Privilege Management, CWE-266 - Incorrect Privilege Assignment, CWE-862 - Missing Authorization.

In our taxonomy this topic maps to a LOW impact class. Vendor advisories and release notes are key. Verify compatibility matrices, prefer supported long term versions, and stage rollouts with monitoring. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.

CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).

CVSS ≥ 0.0
1996-01-03
Critical

CVE-1999-1319

Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain configurations.

CVSS: 10.0 CWE: N/A View on NVD
1996-01-02
High

CVE-1999-1186

rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious pr…

CVSS: 7.2 CWE: N/A View on NVD
1995-10-19
Critical

CVE-1999-0099

Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.

CVSS: 10.0 CWE: N/A View on NVD
1995-08-23
High

CVE-1999-1580

SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passin…

CVSS: 7.2 CWE: N/A View on NVD
1995-08-17
Critical

CVE-1999-0203

In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.

CVSS: 10.0 CWE: N/A View on NVD
1995-05-10
High

CVE-1999-1080

rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, which could allow local users with physical access to…

CVSS: 7.2 CWE: N/A View on NVD
1994-10-02
Medium

CVE-1999-1022

serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows local users to gain root privileges via a Trojan…

CVSS: 6.2 CWE: N/A View on NVD
1994-08-11
High

CVE-1999-1219

Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows local users to gain root privileges, possibly through the clogin command.

CVSS: 7.2 CWE: N/A View on NVD
1994-05-18
High

CVE-1999-1134

Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038, PHSS_4055, and PHSS_4066.

CVSS: 7.2 CWE: N/A View on NVD
1994-04-20
High

CVE-1999-1135

Vulnerability in VUE 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4994 and PHSS_5438.

CVSS: 7.2 CWE: N/A View on NVD
1993-02-24
High

CVE-1999-1312

Vulnerability in DEC OpenVMS VAX 5.5-2 through 5.0, and OpenVMS AXP 1.0, allows local users to gain system privileges.

CVSS: 7.2 CWE: N/A View on NVD
1992-03-19
High

CVE-1999-1121

The default configuration for UUCP in AIX before 3.2 allows local users to gain root privileges.

CVSS: 7.2 CWE: N/A View on NVD
1991-12-31
Critical

CVE-1999-1032

Vulnerability in LAT/Telnet Gateway (lattelnet) on Ultrix 4.1 and 4.2 allows attackers to gain root privileges.

CVSS: 10.0 CWE: N/A View on NVD
1991-12-18
Critical

CVE-1999-1493

Vulnerability in crp in Hewlett Packard Apollo Domain OS SR10 through SR10.3 allows remote attackers to gain root privileges via insecure system calls, (1) pad_$dm_cmd and (2) pad_$def_pfk().

CVSS: 10.0 CWE: N/A View on NVD
1991-10-22
Medium

CVE-1999-1468

rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.

CVSS: 6.2 CWE: N/A View on NVD
1991-05-20
High

CVE-1999-1123

The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2) winstall.

CVSS: 7.2 CWE: N/A View on NVD
1991-03-27
High

CVE-1999-1211

Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges.

CVSS: 7.2 CWE: N/A View on NVD
High

CVE-1999-1212

Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges.

CVSS: 7.2 CWE: N/A View on NVD
1991-02-22
High

CVE-1999-1438

Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.

CVSS: 7.2 CWE: N/A View on NVD
1990-10-03
High

CVE-1999-1198

BuildDisk program on NeXT systems before 2.0 does not prompt users for the root password, which allows local users to gain root privileges.

CVSS: 7.2 CWE: N/A View on NVD
High

CVE-1999-1392

Vulnerability in restore0.9 installation script in NeXT 1.0a and 1.0 allows local users to gain root privileges.

CVSS: 7.2 CWE: N/A View on NVD
1989-01-01
High

CVE-1999-1471

Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECOS field.

CVSS: 7.2 CWE: N/A View on NVD