CWE-648— Incorrect Use of Privileged APIs
62 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-648page 1 of 2
- CVE-2019-1010178CRITICALCVSS 9.8EG 9.82019-07-24
Fred MODX Revolution < 1.0.0-beta5 is affected by: Incorrect Access Control - CWE-648. The impact is: Remote Code Execution. The component is: assets/components/fred/web/elfinder/connector.php. The attack vector is: Uploading a PHP file or…
- CVE-2019-10216HIGHCVSS 7.8EG 7.82019-11-27
In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript fil…
- CVE-2019-14811HIGHCVSS 7.8EG 7.82019-09-03
A flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file c…
- CVE-2019-14812HIGHCVSS 7.8EG 7.82019-11-27
A flaw was found in all ghostscript versions 9.x before 9.50, in the .setuserparams2 procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file co…
- CVE-2019-14813CRITICALCVSS 9.8EG 9.82019-09-06
A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could…
- CVE-2019-14817HIGHCVSS 7.8EG 7.82019-09-03
A flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript fil…
- CVE-2019-14869HIGHCVSS 8.8EG 8.82019-11-15
A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw b…
- CVE-2019-3835MEDIUMCVSS 5.5EG 5.52019-03-25
It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the c…
- CVE-2019-3838MEDIUMCVSS 5.5EG 5.52019-03-25
It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside …
- CVE-2019-3839HIGHCVSS 7.8EG 7.82019-05-16
It was found that in ghostscript some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file syste…
- CVE-2020-5291HIGHCVSS 7.2EG 7.22020-03-31
Bubblewrap (bwrap) before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the `bwrap --userns2` option can be used to make the setuid process keep running as root while being traceable.…
- CVE-2020-7927HIGHCVSS 8.1EG 6.52020-11-23
Specially crafted API calls may allow an authenticated user who holds Organization Owner privilege to obtain an API key with Global Role privilege. This issue affects MongoDB Ops Manager v4.2 versions prior to and including 4.2.17, MongoDB…
- CVE-2022-2023CRITICALCVSS 9.8EG 9.82022-06-20
Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk prior to 1.2.4.
- CVE-2022-20956HIGHCVSS 7.1EG 8.82022-11-04
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to bypass authorization and access system files. This vulnerability is due to improper access co…
- CVE-2022-20965MEDIUMCVSS 4.3EG 5.42023-01-20
A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow an authenticated, remote attacker to take privileges actions within the web-based management interface. This vulnerability is due to imp…
- CVE-2022-23720HIGHCVSS 7.5EG 8.22022-06-30
PingID Windows Login prior to 2.8 does not alert or halt operation if it has been provisioned with the full permissions PingID properties file. An IT administrator could mistakenly deploy administrator privileged PingID API credentials, su…
- CVE-2022-24071MEDIUMCVSS 4.3EG 4.32022-01-28
A Built-in extension in Whale browser before 3.12.129.46 allows attackers to compromise the rendering process which could lead to controlling browser internal APIs.
- CVE-2022-24073HIGHCVSS 7.1EG 7.12022-03-17
The Web Request API in Whale browser before 3.12.129.18 allowed to deny access to the extension store or redirect to any URL when users access the store.
- CVE-2022-24821MEDIUMCVSS 6.8EG 6.82022-04-08
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Simple users can create global SSX/JSX without specific rights: in theory only users with Programming Rights should be allowed to crea…
- CVE-2022-26323HIGHCVSS 8.7EG 0.02025-04-17
Incorrect Use of Privileged APIs vulnerability in OpenText™ Operations Bridge Manager, OpenText™ Operations Bridge Suite (Containerized), OpenText™ UCMDB ( Classic and Containerized) allows Privilege Escalation. The vulnerability …
- CVE-2022-4687HIGHCVSS 8.1EG 8.12022-12-23
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.
- CVE-2022-4796HIGHCVSS 8.1EG 8.12022-12-28
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1.
- CVE-2022-4805MEDIUMCVSS 4.3EG 4.32022-12-28
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1.
- CVE-2023-20136MEDIUMCVSS 4.3EG 4.32023-06-28
A vulnerability in the OpenAPI of Cisco Secure Workload could allow an authenticated, remote attacker with the privileges of a read-only user to execute operations that should require Administrator privileges. The attacker would need valid…
- CVE-2023-28062HIGHCVSS 8.8EG 8.82023-04-11
Dell PPDM versions 19.12, 19.11 and 19.10, contain an improper access control vulnerability. A remote authenticated malicious user with low privileges could potentially exploit this vulnerability to bypass intended access restrictions and…
- CVE-2023-29507CRITICALCVSS 9.1EG 9.12023-04-16
XWiki Commons are technical libraries common to several other top level XWiki projects. The Document script API returns directly a DocumentAuthors allowing to set any authors to the document, which in consequence can allow subsequent execu…
- CVE-2023-4009HIGHCVSS 7.2EG 7.22023-08-08
In MongoDB Ops Manager v5.0 prior to 5.0.22 and v6.0 prior to 6.0.17 it is possible for an authenticated user with project owner or project user admin access to generate an API key with the privileges of org owner resulting in privilege es…
- CVE-2023-4972CRITICALCVSS 9.8EG 10.02023-09-14
Incorrect Use of Privileged APIs vulnerability in Yepas Digital Yepas allows Collect Data as Provided by Users. This issue affects Digital Yepas: before 1.0.1.
- CVE-2023-4993HIGHCVSS 7.5EG 7.52024-02-15
Incorrect Use of Privileged APIs vulnerability in Utarit Information Technologies SoliPay Mobile App allows Collect Data as Provided by Users. This issue affects SoliPay Mobile App: before 5.0.8.
- CVE-2023-6150HIGHCVSS 7.5EG 7.22023-11-28
Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users. This issue affects e-municipality module: before v.105.
- CVE-2023-6151HIGHCVSS 7.5EG 7.22023-11-28
Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users. This issue affects e-municipality module: before v.105.
- CVE-2023-6522HIGHCVSS 7.2EG 7.22024-04-05
Incorrect Use of Privileged APIs vulnerability in ExtremePacs Extreme XDS allows Collect Data as Provided by Users. This issue affects Extreme XDS: before 3914.
- CVE-2024-11068CRITICALCVSS 9.8EG 9.82024-11-11
The D-Link DSL6740C modem has an Incorrect Use of Privileged APIs vulnerability, allowing unauthenticated remote attackers to modify any user’s password by leveraging the API, thereby granting access to Web, SSH, and Telnet services usin…
- CVE-2024-22042HIGHCVSS 7.8EG 7.82024-02-13
A vulnerability has been identified in Unicam FX (All versions). The windows installer agent used in affected product contains incorrect use of privileged APIs that trigger the Windows Console Host (conhost.exe) as a child process with SYS…
- CVE-2024-32008HIGHCVSS 7.8EG 7.82025-11-11
A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). The affected application is vulnerable to a local privilege escalation due to an exposed debug interface on the localhost. This allows any local …
- CVE-2024-37018CRITICALCVSS 9.1EG 9.12024-05-31
The OpenDaylight 0.15.3 controller allows topology poisoning via API requests because an application can manipulate the path that is taken by discovery packets.
- CVE-2024-46978MEDIUMCVSS 6.5EG 6.52024-09-18
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It's possible for any user knowing the ID of a notification filter preference of another user, to enable/disable it or even delete it.…
- CVE-2024-53007MEDIUMCVSS 6.4EG 6.42025-01-31
Bentley Systems ProjectWise Integration Server before 10.00.03.288 allows unintended SQL query execution by an authenticated user via an API call.
- CVE-2024-8785CRITICALCVSS 9.8EG 9.82024-12-02
In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage NmAPI.exe to create or change an existing registry value in registry path HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Ipswitch\.
- CVE-2025-0589MEDIUMCVSS 5.3EG 5.32025-02-11
In affected versions of Octopus Deploy where customers are using Active Directory for authentication it was possible for an unauthenticated user to make an API request against two endpoints which would retrieve some data from the associate…
- CVE-2025-1161HIGHCVSS 7.1EG 7.12025-12-10
Incorrect Use of Privileged APIs vulnerability in NomySoft Information Technology Training and Consulting Inc. Nomysem allows Privilege Escalation.This issue affects Nomysem: through May 2025.
- CVE-2025-2311CRITICALCVSS 9.0EG 9.02025-03-20
Incorrect Use of Privileged APIs, Cleartext Transmission of Sensitive Information, Insufficiently Protected Credentials vulnerability in Sechard Information Technologies SecHard allows Authentication Bypass, Interface Manipulation, Authent…
- CVE-2025-23375HIGHCVSS 7.8EG 7.82025-04-28
Dell PowerProtect Data Manager Reporting, version(s) 19.17, contain(s) an Incorrect Use of Privileged APIs vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of pri…
- CVE-2025-54765MEDIUMCVSS 5.3EG 5.32025-07-29
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to import the appliance configuration, allowing an attacker t…
- CVE-2025-54766MEDIUMCVSS 5.3EG 5.32025-07-29
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to export the appliance configuration, exposing sensitive inf…
- CVE-2025-54767MEDIUMCVSS 6.5EG 6.52025-07-29
An authenticated, read-only user can kill any processes running on the Xormon Original virtual appliance as the lpar2rrd user.
- CVE-2025-54768MEDIUMCVSS 5.3EG 5.32025-07-29
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to download logs from the appliance configuration, exposing�…
- CVE-2025-54769HIGHCVSS 8.8EG 8.82025-07-29
An authenticated, read-only user can upload a file and perform a directory traversal to have the uploaded file placed in a location of their choosing. This can be used to overwrite existing PERL modules within the application to achieve r…
- CVE-2025-5997HIGHCVSS 8.8EG 8.82025-07-28
Incorrect Use of Privileged APIs vulnerability in Beamsec PhishPro allows Privilege Abuse.This issue affects PhishPro: before 7.5.4.2.
- CVE-2025-63291MEDIUMCVSS 5.4EG 6.52025-11-14
When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. The Alteryx server did not check whether the authenticated user had permission …
Map vulnerabilities like CWE-648 to your infrastructure
EchelonGraph correlates every CVE — across CWE-648 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →