CVE-2018-14665

MEDIUM Year: 2018
CVSS v3 Score
6.6
Medium
CVSS v2 Score
7.2
High
Weakness Type
CWE-863
View all →

Vulnerability Description

A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.

Related Vulnerabilities

CVE-2020-1796

MEDIUM
CVSS:6.6(Medium)

There is an improper authorization vulnerability in several smartphones. The software incorrectly performs an authorization to certain user, successful exploit could allow a low privilege user to do c...

CWE-8632020

CVE-2024-12831

MEDIUM
CVSS:6.6(Medium)

Arista NG Firewall uvm_login Incorrect Authorization Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Arista NG Firewal...

CWE-8632024

CVE-2025-21569

MEDIUM
CVSS:6.6(Medium)

Vulnerability in the Oracle Hyperion Data Relationship Management product of Oracle Hyperion (component: Web Services). The supported version that is affected is 11.2.19.0.000. Difficult to exploit vu...

CWE-8632025

CVE-2025-3879

MEDIUM
CVSS:6.6(Medium)

Vault Community, Vault Enterprise (“Vault”) Azure Auth method did not correctly validate the claims in the Azure-issued token, resulting in the potential bypass of the bound_locations parameter on log...

CWE-8632025

CVE-2009-2213

MEDIUM
CVSS:6.5(Medium)

The default configuration of the Security global settings on the Citrix NetScaler Access Gateway appliance with Enterprise Edition firmware 9.0, 8.1, and earlier specifies Allow for the Default Author...

CWE-8632009

CVE-2011-3617

MEDIUM
CVSS:6.5(Medium)

Tahoe-LAFS v1.3.0 through v1.8.2 could allow unauthorized users to delete immutable files in some cases.

CWE-8632011