CVEs classified under CWE-250, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2026-4606: GV Edge Recording Manager (ERM) v2.3.1 improperly runs application components with SYSTEM-level privileges, allowing any local user to gain…
CVE-2022-2634 — CVSS 10.0 (critical): An attacker may be able to execute malicious actions due to the lack of device access protections and device permissions when using the web…
CVE-2026-48584 — CVSS 9.9 (critical): Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network.
CVE-2026-50566 — CVSS 9.9 (critical): Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on…
CVE-2026-44477 — CVSS 9.9 (critical): CloudNativePG is a platform designed to manage PostgreSQL databases within Kubernetes environments. Prior to 1.29.1 and 1.28.3, the…
CVE-2026-25212 — CVSS 9.9 (critical): An issue was discovered in Percona PMM before 3.7. Because an internal database user retains specific superuser privileges, an attacker…
CVE-2025-32445 — CVSS 9.9 (critical): Argo Events is an event-driven workflow automation framework for Kubernetes. A user with permission to create/modify EventSource and Sensor…
CVE-2024-8767 — CVSS 9.9 (critical): Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup…
CVE-2024-3330 — CVSS 9.9 (critical): Vulnerability in Spotfire Spotfire Analyst, Spotfire Spotfire Server, Spotfire Spotfire for AWS Marketplace allows In the case of the…
CVE-2026-34877 — CVSS 9.8 (critical): An issue was discovered in Mbed TLS versions from 2.19.0 up to 3.6.5, Mbed TLS 4.0.0. Insufficient protection of serialized SSL context or…
CVE-2026-27002 — CVSS 9.8 (critical): OpenClaw is a personal AI assistant. Prior to version 2026.2.15, a configuration injection issue in the Docker tool sandbox could allow…
CVE-2025-13375 — CVSS 9.8 (critical): IBM Common Cryptographic Architecture (CCA) 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with…
CVE-2025-12420 — CVSS 9.8 (critical): A vulnerability has been identified in the ServiceNow AI Platform that could enable an unauthenticated user to impersonate another user and…
CVE-2025-33224 — CVSS 9.8 (critical): NVIDIA Isaac Launchable contains a vulnerability where an attacker could cause an execution with unnecessary privileges. A successful…
CVE-2025-33223 — CVSS 9.8 (critical): NVIDIA Isaac Launchable contains a vulnerability where an attacker could cause an execution with unnecessary privileges. A successful…
CVE-2025-34274 — CVSS 9.8 (critical): Nagios Log Server versions prior to 2024R2.0.3 contain an execution with unnecessary privileges vulnerability as it runs its embedded…
CVE-2025-43017 — CVSS 9.8 (critical): HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP ThinPro 8.1 SP8, which includes updates to…
CVE-2025-34515 — CVSS 9.8 (critical): Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an execution with unnecessary privileges vulnerability in sync_project.sh…
CVE-2025-57119 — CVSS 9.8 (critical): An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via the adminlogin.php component and the Login…
CVE-2024-27143 — CVSS 9.8 (critical): Toshiba printers use SNMP for configuration. Using the private community, it is possible to remotely execute commands as root on the remote…
CVE-2024-25421 — CVSS 9.8 (critical): An issue in Ignite Realtime Openfire v.4.9.0 and before allows a remote attacker to escalate privileges via the ROOM_CACHE component.
CVE-2023-52030 — CVSS 9.8 (critical): TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a remote command execution (RCE) vulnerability via the setOpModeCfg…
CVE-2022-44544 — CVSS 9.8 (critical): Mahara 21.04 before 21.04.7, 21.10 before 21.10.5, 22.04 before 22.04.3, and 22.10 before 22.10.0 potentially allow a PDF export to trigger…
CVE-2021-41035 — CVSS 9.8 (critical): In Eclipse Openj9 before version 0.29.0, the JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface…
CVE-2026-12027 — CVSS 9.6 (critical): Inappropriate implementation in Headless in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the…
CVE-2026-11167 — CVSS 9.6 (critical): Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised…
CVE-2026-42088 — CVSS 9.6 (critical): OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. Prior to version…
CVE-2024-7102 — CVSS 9.6 (critical): An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.5.0 which allows an attacker to trigger a…
CVE-2025-67510 — CVSS 9.4 (critical): Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL…
CVE-2026-1346 — CVSS 9.3 (critical): IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 and IBM Verify…
CVE-2025-6949: An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A critical…
CVE-2025-6893: An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in…
CVE-2025-36356 — CVSS 9.3 (critical): IBM Security Verify Access and IBM Security Verify Access Docker 10.0.0.0 through 10.0.9.0 and 11.0.0.0 through 11.0.1.0 could allow a…
CVE-2026-42833 — CVSS 9.1 (critical): Improper control of generation of code ('code injection') in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to execute…
CVE-2025-56557 — CVSS 9.1 (critical): An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol.
CVE-2025-42958 — CVSS 9.1 (critical): Due to a missing authentication check in the SAP NetWeaver application on IBM i-series, the application allows high privileged unauthorized…
CVE-2024-7387 — CVSS 9.1 (critical): A flaw was found in openshift/builder. This vulnerability allows command injection via path traversal, where a malicious user can execute…
CVE-2024-35783 — CVSS 9.1 (critical): A vulnerability has been identified in SIMATIC BATCH V9.1 (All versions), SIMATIC Information Server 2020 (All versions < V2020 SP2 Update…
CVE-2024-6834 — CVSS 9.0 (critical): A vulnerability in APIML Spring Cloud Gateway which leverages user privileges by unexpected signing proxied request by Zowe's client…
CVE-2023-32080 — CVSS 9.0 (critical): Wings is the server control plane for Pterodactyl Panel. A vulnerability affecting versions prior to 1.7.5 and versions 1.11.0 prior to…
CVE-2026-46748 — CVSS 8.8 (high): A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected system includes a binary that is…
CVE-2025-40942 — CVSS 8.8 (high): A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.4). Affected application contains a local privilege…
CVE-2025-13506 — CVSS 8.8 (high): Execution with Unnecessary Privileges vulnerability in Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP allows Expanding…
CVE-2025-57780 — CVSS 8.8 (high): A vulnerability exists in F5OS-A and F5OS-C system that may allow an authenticated attacker with local access to escalate their privileges…
CVE-2025-0078 — CVSS 8.8 (high): In main of main.cpp, there is a possible way to bypass SELinux due to a logic error in the code. This could lead to local escalation of…
CVE-2025-46116 — CVSS 8.8 (high): An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139, and in Ruckus ZoneDirector prior to…
CVE-2024-48013 — CVSS 8.8 (high): Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Execution with Unnecessary Privileges…
CVE-2025-22890 — CVSS 8.8 (high): Execution with unnecessary privileges issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker performs a…
CVE-2024-28139 — CVSS 8.8 (high): The www-data user can elevate its privileges because sudo is configured to allow the execution of the mount command as root without a…
CVE-2024-11075 — CVSS 8.8 (high): A vulnerability in the Incoming Goods Suite allows a user with unprivileged access to the underlying system (e.g. local or via SSH) a…