CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,662 vulnerabilities with CWE-732
CVE-2023-22592 MEDIUM
IBM Robotic Process Automation for Cloud Pak 21.0.1-21.0.4 - Unauthorized Actions via Insufficient Permission Settings
CVSS 4.0
CVE-2022-50931 HIGH
TeamSpeak 3.5.6 - Local Privilege Escalation
CVSS 7.8
CVE-2022-50690 HIGH
Wondershare MirrorGo 2.0.11.346 - Privilege Escalation
CVSS 8.4
CVE-2022-30354 HIGH
OvalEdge < 5.2.9 - Authenticated Sensitive Data Exposure via /user/getUserWithTeam Endpoint
CVSS 7.5
CVE-2022-43845 LOW
IBM Aspera Console <3.4.4 - Info Disclosure
CVSS 3.7
CVE-2022-43915 MEDIUM
IBM App Connect Enterprise Certified Container <12.1 - Privilege Es...
CVSS 6.8
CVE-2022-33167 LOW
IBM Security Directory Integrator <7.2.0 & Verify Directory Integra...
CVSS 3.7
CVE-2022-41700 MEDIUM
Intel(R) NUC Pro Software Suite <2.0.0.9 - Privilege Escalation
CVSS 6.7
CVE-2022-33898 MEDIUM
Intel(R) NUC Watchdog Timer <2.0.21.0 - Privilege Escalation
CVSS 6.7
CVE-2022-30527 HIGH
SINEC NMS < 2.0 - Authenticated Privilege Escalation via Improper Folder Permissions
CVSS 7.8
CVE-2022-39062 HIGH
SICAM TOOLBOX II <V07.10 - Privilege Escalation
CVSS 7.8
CVE-2022-44719 HIGH
Ucopia Wireless Appliance Firmware < 6.0.13 - Insecure SSH Server Permissions
CVSS 7.5
CVE-2022-33163 MEDIUM
IBM Security Directory Suite VA <8.0.1 - Info Disclosure
CVSS 5.3
CVE-2022-41766 MEDIUM
MediaWiki <1.35.8-1.37.5-1.38.3 - Info Disclosure
CVSS 4.3
CVE-2022-46656 MEDIUM
Intel(R) NUC Pro Software Suite <2.0.0.3 - Privilege Escalation
CVSS 6.7
CVE-2022-41771 MEDIUM
Intel(R) QAT <1.9.0 - Info Disclosure
CVSS 6.5
CVE-2022-41699 HIGH
Intel(R) QAT <1.9.0 - Privilege Escalation
CVSS 8.2
CVE-2022-41658 MEDIUM
Intel VTune <2023.0 - Privilege Escalation
CVSS 6.7
CVE-2022-38103 MEDIUM
Intel(R) NUC Software Studio Service <1.17.38.0 - Privilege Escalation
CVSS 6.7
CVE-2022-43946 HIGH
Fortinet FortiClientWindows <7.0.7 - RCE
CVSS 7.5
CVE-2022-43309 MEDIUM
Supermicro X11SSL-CF - Info Disclosure
CVSS 5.5
CVE-2022-43773 HIGH
Hitachi Vantara Pentaho <9.4.0.1-9.3.0.2 - Info Disclosure
CVSS 8.8
CVE-2022-3146 MEDIUM
tripleo-ansible - Unauthenticated Sensitive Information Exposure via Insecure File Permissions
CVSS 5.5
CVE-2022-3101 MEDIUM
tripleo-ansible - Information Disclosure via Insecure File Permissions
CVSS 5.5
CVE-2022-25992 HIGH
Intel(R) oneAPI Toolkits oneapi-cli <0.2.0 - Privilege Escalation
CVSS 7.5
Details
Vulnerabilities 1,662
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits