CVE-2023-42931

HIGH Year: 2023
CVSS v3 Score
8.3
High
Weakness Type
CWE-280
View all →

Vulnerability Description

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6.3, macOS Sonoma 14.2, macOS Monterey 12.7.2. A process may gain admin privileges without proper authentication.

Related Vulnerabilities

CVE-2022-4863

HIGH
CVSS:8.4(High)

Improper Handling of Insufficient Permissions or Privileges in GitHub repository usememos/memos prior to 0.9.1.

CWE-2802022

CVE-2024-51459

HIGH
CVSS:8.4(High)

IBM InfoSphere Information Server 11.7 could allow a local user to execute privileged commands due to the improper handling of permissions.

CWE-2802024

CVE-2020-29031

HIGH
CVSS:8.1(High)

An Insecure Direct Object Reference vulnerability exists in the web UI of the GateManager which allows an authenticated attacker to reset the password of any user in its domain or any sub-domain, via ...

CWE-2802020

CVE-2024-43702

HIGH
CVSS:8.1(High)

Software installed and run as a non-privileged user may conduct improper GPU system calls to allow unprivileged access to arbitrary physical memory page.

CWE-2802024

CVE-2019-6570

HIGH
CVSS:8.8(High)

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Due to insufficient checking of user permissions, an attacker may access URLs that require special authorizat...

CWE-2802019

CVE-2022-2193

HIGH
CVSS:8.8(High)

Insecure Direct Object Reference vulnerability in HYPR Server before version 6.14.1 allows remote authenticated attackers to add a FIDO2 authenticator to arbitrary accounts via parameter tampering in ...

CWE-2802022