Description
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
CVE vulnerabilities with CWE-266 (963)
10.0
CVSS
CRITICAL
CVE-2026-48172
pub. 2026-05-21🚩 CISA KEV⚡ EXPLOIT
10.0
CVSS
CRITICAL
CVE-2026-23800
pub. 2026-01-16
10.0
CVSS
CRITICAL
CVE-2025-41115
pub. 2025-11-21
10.0
CVSS
CRITICAL
CVE-2025-34112
pub. 2025-07-15
10.0
CVSS
CRITICAL
CVE-2024-9478
pub. 2024-11-20
10.0
CVSS
CRITICAL
CVE-2024-9479
pub. 2024-11-20
9.9
CVSS
CRITICAL
CVE-2026-42368
pub. 2026-05-04
9.9
CVSS
CRITICAL
CVE-2026-22907
pub. 2026-01-15
9.9
CVSS
CRITICAL
CVE-2025-62645
pub. 2025-10-17
9.9
CVSS
CRITICAL
CVE-2025-10725
pub. 2025-09-30
9.9
CVSS
CRITICAL
CVE-2025-54049
pub. 2025-08-20
9.9
CVSS
CRITICAL
CVE-2025-26512
pub. 2025-03-24
9.9
CVSS
CRITICAL
CVE-2019-10940
pub. 2020-01-16
9.8
CVSS
CRITICAL
CVE-2026-57692
pub. 2026-07-01
9.8
CVSS
CRITICAL
CVE-2026-56028
pub. 2026-06-26
9.8
CVSS
CRITICAL
CVE-2026-56030
pub. 2026-06-26
9.8
CVSS
CRITICAL
CVE-2026-56033
pub. 2026-06-26
9.8
CVSS
CRITICAL
CVE-2026-34901
pub. 2026-06-15
9.8
CVSS
CRITICAL
CVE-2026-39583
pub. 2026-06-15
9.8
CVSS
CRITICAL
CVE-2026-49060
pub. 2026-06-11
Showing 20 of 963 vulnerabilities