CWE-268 · Privilege Chaining
22 CVEs classified under CWE-268 (Privilege Chaining). Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-0971 | Critical | 9.6 | 2023-06-21 | A logic error in SiLabs Z/IP Gateway SDK 7.18.02 and earlier allows authentication to be bypassed, remote administration of Z-Wave controllers, and S0/S2 encry… |
CVE-2023-5839 | High | 8.8 | 2023-10-29 | Privilege Chaining in GitHub repository hestiacp/hestiacp prior to 1.8.9. |
CVE-2026-32325 | High | 7.8 | 2026-06-01 | Privilege chaining issue exists in ServerView Agents for Windows V11.60.04 and earlier. If this vulnerability is exploited, a local authenticated attacker who… |
CVE-2026-3888 | High | 7.8 | 2026-03-17 | Local privilege escalation in snapd on Linux allows local attackers to get root privilege by re-creating snap's private /tmp directory when systemd-tmpfiles is… |
CVE-2025-64701 | High | 7.8 | 2025-12-11 | QND Premium/Advance/Standard Ver.11.0.9i and prior contains a privilege escalation vulnerability, which may allow a user who can log in to a Windows system wit… |
CVE-2025-49741 | High | 7.4 | 2025-07-01 | No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network. |
CVE-2024-1299 | Medium | 6.5 | 2024-03-07 | A privilege escalation vulnerability was discovered in GitLab affecting versions 16.8 prior to 16.8.4 and 16.9 prior to 16.9.2. It was possible for a user with… |
CVE-2024-1250 | Medium | 6.5 | 2024-02-12 | An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with manage_group_acce… |
CVE-2025-32955 | Medium | 6.0 | 2025-04-21 | Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. Versions from 0.12.0 to before 2.12.0 are vulnerable to `disable-sud… |
CVE-2025-36124 | Medium | 5.9 | 2025-08-12 | IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.8 could allow a remote attacker to bypass security restrictions caused by a failure to honor J… |
CVE-2023-0759 | Medium | 5.3 | 2023-02-09 | Privilege Chaining in GitHub repository cockpit-hq/cockpit prior to 2.3.8. |
CVE-2025-20112 | Medium | 5.1 | 2025-05-21 | A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileg… |
CVE-2023-20194 | Medium | 4.9 | 2023-09-07 | A vulnerability in the ERS API of Cisco ISE could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system of an affe… |
CVE-2019-3844 | Medium | 4.5 | 2019-04-26 | It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to cre… |
CVE-2022-1003 | Low | 3.3 | 2022-03-18 | One of the API in Mattermost version 6.3.0 and earlier fails to properly protect the permissions, which allows the system administrators to combine the two dis… |
CVE-2025-7973 | | 2025-08-14 | A security issue exists in FactoryTalk ViewPoint version 14.0 or below due to improper handling of MSI repair operations. During a repair, attackers can hijack… | |
CVE-2025-2297 | | 2025-07-28 | Prior to version 25.4.270.0, a local authenticated attacker can manipulate user profile files to add illegitimate challenge response codes into the local user… | |
CVE-2025-2903 | | 2025-04-17 | An attacker with knowledge of creating user accounts during VM deployment on Google Cloud Platform (GCP) using the OS Login feature, can login via SSH gaining… | |
CVE-2024-4877 | | 2025-04-03 | OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would conn… | |
CVE-2025-0889 | | 2025-02-26 | Prior to 25.2, a local authenticated attacker can elevate privileges on a system with Privilege Management for Windows installed, via the manipulation of COM o… |