CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

Privilege escalation vulnerabilities

privilege escalation / EoP466 advisories281 exploitedlatest 2026-07-10

Privilege escalation turns limited access into higher privileges — a normal user becoming root or SYSTEM, or a compromised process escaping its sandbox. These flaws rarely start an intrusion but almost always appear in the middle of one, chained after initial access, which is why so many are exploited in the wild despite "local" attack vectors.

Classification is assigned by the CSIRTS enrichment pipeline from the advisory text. The list below shows the latest advisories tagged privilege escalation, newest first, across national CERTs, vendor PSIRTs and vulnerability databases — exploited marks CVEs in the CISA KEV catalog.

Latest privilege escalation advisories

Other vulnerability classes

Remote code execution (996)Authentication bypass (368)Denial of service (608)Information disclosure (414)Memory corruption (263)Path traversal (100)Code injection (92)Cross-site scripting (112)Unsafe deserialization (49)SQL injection (51)Server-side request forgery (38)