CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2023-35800 MEDIUM
Stormshield Endpoint Security - Incorrect Permission Assignment
CVSS 4.3
CVE-2023-35799 MEDIUM
Stormshield Endpoint Security - Incorrect Permission Assignment
CVSS 5.5
CVE-2023-35168 MEDIUM
Dataease < 1.18.8 - Incorrect Permission Assignment
CVSS 6.5
CVE-2023-29860 HIGH
Dtstack Taier - Incorrect Permission Assignment
CVSS 7.5
CVE-2023-34981 HIGH
Apache Tomcat < 11.0.0-M6 - Incorrect Permission Assignment
CVSS 7.5
CVE-2023-26427 LOW
Properties File - Info Disclosure
CVSS 3.2
CVE-2023-34154 HIGH
HUAWEI VR - Privilege Escalation
CVSS 8.2
CVE-2023-34797 MEDIUM
Temenos Cwx - Incorrect Permission Assignment
CVSS 5.4
CVE-2023-34852 CRITICAL
Publiccms < 4.0.202302 - Incorrect Permission Assignment
CVSS 9.8
CVE-2023-21142 MEDIUM
Google Android - Incorrect Permission Assignment
CVSS 5.5
CVE-2023-35147 MEDIUM
Jenkins Aws Codecommit Trigger - Incorrect Permission Assignment
CVSS 6.5
CVE-2023-31142 LOW
Discourse <3.0.4-3.1.0.beta5 - Info Disclosure
CVSS 2.0
CVE-2023-33695 HIGH
Hutool <5.8.17 - Info Disclosure
CVSS 7.1
CVE-2023-31238 MEDIUM
SICAM P850 <V3.11 - Info Disclosure
CVSS 5.5
CVE-2023-30897 HIGH
Siemens Wincc < 7.5.2.13 - Incorrect Permission Assignment
CVSS 7.8
CVE-2023-2876 LOW
ABB REX640 - XSS
CVSS 3.1
CVE-2023-32114 LOW
SAP Netweaver - Incorrect Permission Assignment
CVSS 2.7
CVE-2023-28399 HIGH
Contec Conprosys Hmi System < 3.5.3 - Incorrect Permission Assignment
CVSS 7.8
CVE-2023-28346 HIGH
Faronics Insight - Incorrect Permission Assignment
CVSS 7.3
CVE-2023-31874 HIGH
Yank Note <3.52.1 - RCE
CVSS 8.8
CVE-2023-31748 HIGH
MobileTrans <4.0.11 - Privilege Escalation
CVSS 7.8
CVE-2023-31454 HIGH
Apache InLong <1.7.0 - Privilege Escalation
CVSS 7.5
CVE-2023-31453 HIGH
Apache InLong <1.7.0 - Privilege Escalation
CVSS 7.5
CVE-2023-33251 MEDIUM
Akka HTTP <10.5.2 - Info Disclosure
CVSS 4.7
CVE-2023-1692 HIGH
Window Management Module - Info Disclosure
CVSS 7.5
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits