Privilege escalation vulnerabilities
Privilege escalation turns limited access into higher privileges — a normal user becoming root or SYSTEM, or a compromised process escaping its sandbox. These flaws rarely start an intrusion but almost always appear in the middle of one, chained after initial access, which is why so many are exploited in the wild despite "local" attack vectors.
Classification is assigned by the CSIRTS enrichment pipeline from the advisory text. The list below shows the latest advisories tagged privilege escalation, newest first, across national CERTs, vendor PSIRTs and vulnerability databases — exploited marks CVEs in the CISA KEV catalog.