CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2024-41954 MEDIUM
Fogproject < 1.5.10.41 - Incorrect Permission Assignment
CVSS 5.3
CVE-2024-31202 HIGH
Proges Thermoscan IP - Incorrect Permission Assignment
CVSS 7.8
CVE-2024-27883 MEDIUM
macOS - Info Disclosure
CVSS 4.4
CVE-2024-41685 HIGH
Syrotech Sy-gpon-1110-wdont Firmware - Incorrect Permission Assignment
CVSS 7.5
CVE-2024-1724 MEDIUM
Canonical Snapd < 2.62 - Incorrect Permission Assignment
CVSS 6.3
CVE-2024-5618 CRITICAL
PruvaSoft Informatics Apinizer Mgmt Console <2024.05.1 - Privilege ...
CVSS 9.9
CVE-2024-6435 HIGH
Rockwellautomation Rockwell Automation Pavilion8 - Privilege Escalation
CVSS 8.8
CVE-2024-6780 LOW
Android Server Telecom - Info Disclosure
CVSS 3.3
CVE-2024-6739 MEDIUM
MailGates/MailAudit - XSS
CVSS 5.3
CVE-2024-20456 MEDIUM
Cisco IOS XR - Privilege Escalation
CVSS 6.7
CVE-2024-28827 HIGH
Checkmk < 2.0.0 - Incorrect Permission Assignment
CVSS 8.8
CVE-2024-39875 MEDIUM
Siemens Sinema Remote Connect Server - Incorrect Permission Assignment
CVSS 4.3
CVE-2024-37087 MEDIUM
Vmware Cloud Foundation < 5.2 - Incorrect Permission Assignment
CVSS 5.3
CVE-2024-5163 CRITICAL
com.transsion.carlcare - Info Disclosure
CVSS 9.8
CVE-2024-37369 HIGH
Rockwellautomation Factorytalk View - Incorrect Permission Assignment
CVSS 8.8
CVE-2024-36821 MEDIUM
Linksys Velop WiFi 5 - Privilege Escalation
CVSS 6.8
CVE-2024-3668 HIGH
Ideabox Powerpack Addons For Elementor - Incorrect Permission Assig...
CVSS 8.8
CVE-2024-30369 HIGH
A10networks Advanced Core Operating S... - Incorrect Permission Assignment
CVSS 7.8
CVE-2024-29078 HIGH
MosP kintai kanri <4.6.6 - Info Disclosure
CVSS 7.5
CVE-2024-21902 MEDIUM
Qnap Qts - Information Disclosure
CVSS 6.4
CVE-2024-21835 MEDIUM
Intel Extreme Tuning Utility - Incorrect Permission Assignment
CVSS 6.7
CVE-2024-27108 MEDIUM
GE HealthCare EchoPAC - Info Disclosure
CVSS 6.8
CVE-2024-33499 CRITICAL
SIMATIC RTLS Locating Manager -<V3.0.1.1 - Info Disclosure
CVSS 9.1
CVE-2024-30208 MEDIUM
SIMATIC RTLS Locating Manager -<V3.0.1.1 - Info Disclosure
CVSS 6.3
CVE-2024-1486 HIGH
GE HealthCare ultrasound devices - Privilege Escalation
CVSS 7.4
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits