CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2024-10018 CRITICAL
com.transsion.aivoiceassistant - Privilege Escalation
CVSS 9.8
CVE-2024-44729 HIGH
Mirotalk <9de226 - Privilege Escalation
CVSS 7.5
CVE-2024-47833 MEDIUM
Taipy <4.0.0 - Info Disclosure
CVSS 6.5
CVE-2024-7612 HIGH
Ivanti Endpoint Manager Mobile - Incorrect Permission Assignment
CVSS 8.8
CVE-2024-24117 CRITICAL
Ruijie Rg-nbs2009g-p Firmware - Incorrect Permission Assignment
CVSS 9.8
CVE-2024-6360 CRITICAL
OpenText Vertica 10.X-24.X - Privilege Escalation
CVSS 9.8
CVE-2024-7594 HIGH
Hashicorp Vault < 1.15.15 - Incorrect Permission Assignment
CVSS 7.5
CVE-2024-9142 CRITICAL
Olgu Computer Systems e-Belediye <2.0.642 - Path Traversal
CVSS 9.8
CVE-2024-8900 HIGH
Mozilla Firefox < 129.0 - Incorrect Permission Assignment
CVSS 7.5
CVE-2024-8039 CRITICAL
com.afmobi.boomplayer - Privilege Escalation
CVSS 9.8
CVE-2024-6510 HIGH
AVG Internet Security <24 - Privilege Escalation
CVSS 7.8
CVE-2024-44575 LOW
RELY-PCIe <23.1.0 - Info Disclosure
CVSS 3.7
CVE-2024-41171 HIGH
SINUMERIK - Privilege Escalation
CVSS 8.8
CVE-2024-45041 HIGH
External Secrets Operator - Privilege Escalation
CVSS 8.3
CVE-2024-38456 HIGH
Vivavis HIGH-LEIT - Privilege Escalation
CVSS 7.8
CVE-2024-7986 HIGH
Rockwell Automation ThinManager < - Info Disclosure
CVSS 7.5
CVE-2024-5930 HIGH
Vipre Advanced Security - Incorrect Permission Assignment
CVSS 7.8
CVE-2024-7513 HIGH
Rockwellautomation Factorytalk View - Incorrect Permission Assignment
CVSS 8.8
CVE-2024-5915 HIGH
Paloaltonetworks Globalprotect - Incorrect Permission Assignment
CVSS 7.8
CVE-2024-25561 MEDIUM
Intel(R) HID Event Filter <2.2.2.1 - Privilege Escalation
CVSS 6.7
CVE-2024-23908 MEDIUM
Flexlm License Daemons For Intel Fpga < 11.19.5.0 - Incorrect Permission Assignment
CVSS 6.7
CVE-2024-6619 HIGH
Ocean Data Systems Dream Report - Privilege Escalation/DoS
CVE-2024-43199 HIGH
Nagios NDOUtils <2.1.4 - Privilege Escalation
CVSS 7.8
CVE-2024-41820 MEDIUM
Kubean < 0.18.0 - Incorrect Permission Assignment
CVSS 6.0
CVE-2024-41720 HIGH
Zexelon Zwx-2000csw2-hn Firmware - Incorrect Permission Assignment
CVSS 8.0
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits