CVE-2025-20612

MEDIUM Year: 2025
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-279
View all →

Vulnerability Description

Incorrect execution-assigned permissions for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

Related Vulnerabilities

CVE-2017-8441

MEDIUM
CVSS:4.3(Medium)

Elastic X-Pack Security versions prior to 5.4.1 and 5.3.3 did not always correctly apply Document Level Security to index aliases. This bug could allow a user with restricted permissions to view data ...

CWE-2792017

CVE-2023-50914

MEDIUM
CVSS:6.7(Medium)

A Privilege Escalation issue in the inter-process communication procedure from GOG Galaxy (Beta) 2.0.67.2 through v2.0.71.2 allows authentictaed users to change the DACL of arbitrary system directorie...

CWE-2792023

CVE-2024-37025

MEDIUM
CVSS:6.7(Medium)

Incorrect execution-assigned permissions in some Intel(R) Advanced Link Analyzer Standard Edition software installer before version 23.1.1 may allow an authenticated user to potentially enable escalat...

CWE-2792024

CVE-2023-3915

HIGH
CVSS:7.2(High)

An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. If an e...

CWE-2792023

CVE-2024-37734

CRITICAL
CVSS:9.8(Critical)

An issue in OpenEMR 7.0.2 allows a remote attacker to escalate privileges viaa crafted POST request using the noteid parameter.

CWE-2792024

CVE-2020-8025

CRITICAL
CVSS:9.3(Critical)

A Incorrect Execution-Assigned Permissions vulnerability in the permissions package of SUSE Linux Enterprise Server 12-SP4, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 1...

CWE-2792020