CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2026-25770 CRITICAL
Wazuh has Privilege Escalation to Root via Cluster Protocol File Write
CVSS 9.1
CVE-2026-28563 MEDIUM
Apache Airflow: DAG authorization bypass
CVSS 4.3
CVE-2026-26929 MEDIUM
Apache Airflow: Wildcard DagVersion Listing Bypasses Per‑DAG RBAC and Leaks Metadata
CVSS 6.5
CVE-2026-29516 MEDIUM
Buffalo TeraStation TS5400R Excessive File Permissions Information Disclosure
CVSS 4.9
CVE-2026-32704 MEDIUM
SiYuan renderSprig: missing admin check allows any user to read full workspace DB
CVSS 6.5
CVE-2026-3315 MEDIUM
ASSA ABLOY Visionline <1.33 - Privilege Escalation
CVE-2026-24291 HIGH
Windows Accessibility Infrastructure - Privilege Escalation
CVSS 7.8
CVE-2026-28725 MEDIUM
Acronis Cyber Protect 17 <41186 - Info Disclosure
CVSS 5.5
CVE-2026-29188 CRITICAL
File Browser <2.61.1 - Privilege Escalation
CVSS 9.1
CVE-2026-29126 HIGH
IDC SFX2100 - Privilege Escalation
CVSS 7.8
CVE-2026-29125 MEDIUM
IDC SFX2100 - Privilege Escalation
CVSS 4.7
CVE-2026-24732 MEDIUM
BlueSpice 5.1-5.1.3/5.2-5.2.0 - Auth Bypass
CVE-2026-2915 HIGH
HP System Event Utility <3.2.16 - DoS
CVSS 7.1
CVE-2026-2637 HIGH
iBoysoft NTFS for Mac 8.0.0.0 - Privilege Escalation
CVSS 7.8
CVE-2026-21902 CRITICAL
Juniper Junos OS Evolved - RCE
CVSS 9.8
CVE-2026-26102 HIGH
Owl opds 2.2.0.4 - Privilege Escalation
CVSS 7.8
CVE-2026-26101 HIGH
Owl opds 2.2.0.4 - Privilege Escalation
CVSS 7.8
CVE-2026-26100 MEDIUM
Owl opds 2.2.0.4 - Privilege Escalation
CVSS 5.5
CVE-2026-26096 MEDIUM
Owl opds 2.2.0.4 - Privilege Escalation
CVSS 5.5
CVE-2026-26095 MEDIUM
Owl opds 2.2.0.4 - Privilege Escalation
CVSS 5.5
CVE-2026-24834 CRITICAL
Kata Containers <3.27.0 - Privilege Escalation
CVSS 9.3
CVE-2026-1344 MEDIUM
Tanium Enforce Recovery Key Portal - Privilege Escalation
CVSS 6.5
CVE-2026-23648 HIGH
Glory RBG-100 ISPK-08 - Privilege Escalation
CVSS 7.8
CVE-2026-24131 MEDIUM
pnpm <10.28.2 - Path Traversal
CVSS 5.5
CVE-2026-0775 HIGH
Npm - Incorrect Permission Assignment
CVSS 7.0
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits