How severe is CVE-2025-27396?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.8 out of 10.

What type of vulnerability is CVE-2025-27396?

This is classified as CWE-273, which is a common weakness in software security.

CVE-2025-27396

HIGH Year: 2025

CVSS v3 Score

8.8

High

Weakness Type

CWE-273

View all →

Vulnerability Description

A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly limit the elevation of privileges required to perform certain valid functionality. This could allow an authenticated lowly-privileged remote attacker to escalate their privileges.

CVE-2020-14298

HIGH

CVSS:8.8(High)

The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed ...

CWE-2732020

CVE-2020-14300

HIGH

CVSS:8.8(High)

The docker packages version docker-1.13.1-108.git4ef4b30.el7 as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 (https://access.redhat.com/errata/RHBA-2020:0053) included an incorrec...

CWE-2732020

CVE-2024-8382

HIGH

CVSS:8.8(High)

Internal browser event interfaces were exposed to web content when privileged EventHandler listener callbacks ran for those events. Web content that tried to use those interfaces would not be able to ...

CWE-2732024

CVE-2011-2921

CRITICAL

CVSS:9.8(Critical)

ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges.

CWE-2732011