CWE-250

Execution with Unnecessary Privileges

MITRE

No catalog description on file. The MITRE CWE site has the canonical reference.

CVEs (total)

Critical

High

Medium

Low

Severity distribution

Recent CVEs

showing 13 of 13

CVE-2026-12027Critical· 9.6EPSS 0%12 h ago
Inappropriate implementation in Headless in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severit
CVE-2026-47190—EPSS 0%17 h ago
IPAM controller service account granted unnecessary full access to Secrets
go
CVE-2022-22960High· 7.8KEVEXPLOITEPSS 72%20 h ago
VMware Multiple Products Privilege Escalation Vulnerability
CVE-2024-38813High· 7.5KEVEPSS 30%20 h ago
VMware vCenter Server Privilege Escalation Vulnerability
CVE-2025-40602Medium· 6.6KEVEPSS 0%20 h ago
SonicWall SMA1000 Missing Authorization Vulnerability
CVE-2026-46748High· 8.8EPSS 0%21 h ago
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected system includes a binary that is configured with the cap_dac_override capability. This capability allows the process to bypass file system per
CVE-2026-50566Critical· 9.9EPSS 0%22 h ago
Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.24.0, a tenant with environments.fission.io create/update RBAC can run privileg
CVE-2026-11626—EPSS 0%2 d ago
CleanWipe Removal Tool (macOS), prior to 16.0.0.65, may be susceptible to an Local Privilege Escalation vulnerability, which is a type of issue whereby an attacker with limited privilege access on an affected system can escalate their privi
CVE-2026-50565Medium· 4.9EPSS 0%2 d ago
Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.24.0, Fission builder pods were created with ServiceAccountName: fission-builde
CVE-2026-46617—EPSS 0%2 d ago
Fission runtime pods automount the fission-fetcher service-account token into the user function container, granting function code namespace-wide secret / configmap read
go
CVE-2026-46618—EPSS 0%2 d ago
Fission builder accepts arbitrary buildcmd strings from Environment.spec.builder.command, allowing the builder pod to invoke arbitrary executables
go
CVE-2026-11167Critical· 9.6EPSS 0%4 d ago
Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium securit
CVE-2026-34877Critical· 9.8EPSS 0%7 d ago
An issue was discovered in Mbed TLS versions from 2.19.0 up to 3.6.5, Mbed TLS 4.0.0. Insufficient protection of serialized SSL context or session structures allows an attacker who can modify the serialized structures to induce memory corru

CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.