CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2024-39967 MEDIUM
Aginode GigaSwitch <5 - Info Disclosure
CVSS 6.5
CVE-2024-11497 HIGH
Unknown Product <Unknown Version - Privilege Escalation
CVSS 8.8
CVE-2024-54910 MEDIUM
Hasleo Backup Suite Free <4.9.4 - Info Disclosure
CVSS 4.7
CVE-2024-55411 HIGH
SUNIX Multi I/O Card v10.1.0.0 - Memory Corruption
CVSS 8.8
CVE-2024-53932 CRITICAL
Color Phone: Call Screen Theme <21.1.9 - RCE
CVSS 9.1
CVE-2024-53931 CRITICAL
com.glitter.caller.screen <1.1 - RCE
CVSS 9.1
CVE-2024-47475 MEDIUM
Dell PowerScale OneFS <9.8.0.x - DoS
CVSS 5.0
CVE-2024-49385 MEDIUM
Acronis True Image <41736 - Info Disclosure
CVSS 5.5
CVE-2024-55955 MEDIUM
Trendmicro Deep Security Agent - Uncontrolled Search Path
CVSS 6.7
CVE-2024-45497 HIGH
OpenShift - DoS
CVSS 7.6
CVE-2024-38864 LOW
Checkmk < 2.1.0 - Incorrect Permission Assignment
CVSS 3.3
CVE-2024-47104 MEDIUM
IBM i 7.4-7.5 - Privilege Escalation
CVSS 6.8
CVE-2024-12564 MEDIUM
Open Design Alliance CDE inWEB SDK <2025.3 - Info Disclosure
CVE-2024-12255 MEDIUM
Zealousweb Accept Stripe Payments Usi... - Information Disclosure
CVSS 5.3
CVE-2024-12363 HIGH
TeamViewer <24.12 - Privilege Escalation
CVSS 7.1
CVE-2024-8540 HIGH
Ivanti Sentry <10.1.0 - Privilege Escalation
CVSS 8.8
CVE-2024-7572 HIGH
Ivanti Desktop & Server Management - Incorrect Permission Assignment
CVSS 7.1
CVE-2024-10256 HIGH
Ivanti Patch SDK <9.7.703 - Privilege Escalation
CVSS 7.1
CVE-2024-8256 MEDIUM
Teltonika Networks RUTOS <7.8, TSWOS <1.3 - Privilege Escalation
CVE-2024-41647 CRITICAL
Openrobotics Robot Operating System - Incorrect Permission Assignment
CVSS 9.8
CVE-2024-11220 HIGH
Openautomationsoftware Open Automation Software - Privilege Escalation
CVSS 7.8
CVE-2024-45841 MEDIUM
UD-LT1 <2.1.9 - Info Disclosure
CVSS 6.5
CVE-2024-12151 MEDIUM
Devolutions Server < 2024.3.9.0 - Incorrect Permission Assignment
CVSS 5.0
CVE-2024-12149 HIGH
Devolutions Remote Desktop Manager - Incorrect Permission Assignment
CVSS 8.1
CVE-2024-37574 HIGH
GriceMobile <4.5.2 - Code Injection
CVSS 8.2
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits