CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2023-1516 HIGH
RoboDK <5.5.3 - Privilege Escalation
CVSS 7.9
CVE-2023-25817 LOW
Nextcloud Server < 24.0.9 - Incorrect Permission Assignment
CVSS 3.5
CVE-2023-1135 HIGH
Deltaww Infrasuite Device Master - Incorrect Permission Assignment
CVSS 7.8
CVE-2023-27096 MEDIUM
OpenGoofy Hippo4j <1.4.3 - Info Disclosure
CVSS 6.5
CVE-2023-27095 MEDIUM
OpenGoofy Hippo4j <1.4.3 - Privilege Escalation
CVSS 6.5
CVE-2023-27084 MEDIUM
Isoftforce Dreamer CMS <4.0.1 - Info Disclosure
CVSS 5.3
CVE-2023-23939 LOW
Azure/setup-kubectl <3 - Privilege Escalation
CVSS 3.9
CVE-2023-24205 CRITICAL
Clash for Windows <0.20.12 - RCE
CVSS 9.8
CVE-2023-25150 MEDIUM
Nextcloud Richdocuments < 3.8.7 - Improper Access Control
CVSS 5.8
CVE-2023-22326 MEDIUM
BIG-IP <17.0.0.2,16.1.3.3,15.1.8.1,14.1.5.3,13.1.x - Info Disclosure
CVSS 4.9
CVE-2023-23610 MEDIUM
Glpi < 9.5.12 - Improper Privilege Management
CVSS 6.5
CVE-2023-20923 MEDIUM
Google Android - Incorrect Permission Assignment
CVSS 5.5
CVE-2023-22592 MEDIUM
IBM Robotic Process Automation For Cl... - Incorrect Permission Assignment
CVSS 4.0
CVE-2022-50931 HIGH
TeamSpeak 3.5.6 - Local Privilege Escalation
CVSS 7.8
CVE-2022-50690 HIGH
Wondershare MirrorGo 2.0.11.346 - Privilege Escalation
CVSS 8.4
CVE-2022-30354 HIGH
Ovaledge < 5.2.9 - Incorrect Permission Assignment
CVSS 7.5
CVE-2022-43845 LOW
IBM Aspera Console <3.4.4 - Info Disclosure
CVSS 3.7
CVE-2022-43915 MEDIUM
IBM App Connect Enterprise Certified Container <12.1 - Privilege Es...
CVSS 6.8
CVE-2022-33167 LOW
IBM Security Directory Integrator <7.2.0 & Verify Directory Integra...
CVSS 3.7
CVE-2022-41700 MEDIUM
Intel(R) NUC Pro Software Suite <2.0.0.9 - Privilege Escalation
CVSS 6.7
CVE-2022-33898 MEDIUM
Intel(R) NUC Watchdog Timer <2.0.21.0 - Privilege Escalation
CVSS 6.7
CVE-2022-30527 HIGH
Siemens Sinec Nms < 2.0 - Incorrect Permission Assignment
CVSS 7.8
CVE-2022-39062 HIGH
SICAM TOOLBOX II <V07.10 - Privilege Escalation
CVSS 7.8
CVE-2022-44719 HIGH
Ucopia Wireless Appliance Firmware - Incorrect Permission Assignment
CVSS 7.5
CVE-2022-33163 MEDIUM
IBM Security Directory Suite VA <8.0.1 - Info Disclosure
CVSS 5.3
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits