CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2022-34891 HIGH
Parallels Desktop - Incorrect Permission Assignment
CVSS 7.8
CVE-2022-20234 HIGH
Car Settings - Privilege Escalation
CVSS 7.5
CVE-2022-20218 HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2022-33695 MEDIUM
InputManagerService <SMR Jul-2022 Release 1 - Privilege Escalation
CVSS 5.1
CVE-2022-30929 HIGH
Mini-Tmall v1.0 - Privilege Escalation
CVSS 8.8
CVE-2022-2227 LOW
Gitlab < 14.10.5 - Incorrect Permission Assignment
CVSS 3.1
CVE-2022-23725 HIGH
Pingidentity Pingid Integration For W... - Insufficiently Protected Credentials
CVSS 7.7
CVE-2022-34043 HIGH
Nomachine v7.9.2 - Code Injection
CVSS 7.3
CVE-2022-34012 MEDIUM
OneBlog v2.3.4 - Privilege Escalation
CVSS 6.5
CVE-2022-1596 MEDIUM
ABB Rex640 Pcl1 Firmware < 1.0.7 - Incorrect Permission Assignment
CVSS 6.5
CVE-2022-31464 HIGH
Adaware Protect <1.2.439.4251 - Privilege Escalation
CVSS 7.8
CVE-2022-32155 HIGH
Splunk < 9.0 - Incorrect Permission Assignment
CVSS 7.5
CVE-2022-31465 HIGH
Xpedition Designer <VX.2.10-<VX.2.13 - Privilege Escalation
CVSS 7.8
CVE-2022-33175 CRITICAL
Powertek firmware <3.30.30 - Info Disclosure
CVSS 9.8
CVE-2022-1412 HIGH
Premierethemes Log WP Mail < 0.1 - Incorrect Permission Assignment
CVSS 7.5
CVE-2022-25151 HIGH
Itarian On-premise < 6.35.37347.20040 - XSS
CVSS 7.5
CVE-2022-30700 HIGH
Trend Micro Apex One/Apex One as a Service - Privilege Escalation
CVSS 7.8
CVE-2022-1348 MEDIUM
Logrotate < 3.20.0 - Incorrect Permission Assignment
CVSS 6.5
CVE-2022-30990 HIGH
Acronis Cyber Protect <15 - Info Disclosure
CVSS 7.5
CVE-2022-25172 MEDIUM
Inhandnetworks Ir302 Firmware - Incorrect Permission Assignment
CVSS 6.1
CVE-2022-23743 HIGH
Checkpoint Zonealarm < 15.8.211.192119 - Improper Privilege Management
CVSS 7.8
CVE-2022-29263 HIGH
F5 BIG-IP APM <16.1.2.2, <15.1.5.1, <14.1.4.6, <13.1.5, <=12.1.x, <...
CVSS 7.8
CVE-2022-26340 MEDIUM
F5 Big-ip Access Policy Manager < 7.1.0 - Incorrect Permission Assignment
CVSS 4.9
CVE-2022-22521 HIGH
Miele Benchmark Programming Tool <1.2.71 - Privilege Escalation
CVSS 7.3
CVE-2022-24886 LOW
Nextcloud < 3.19.0 - Information Disclosure
CVSS 2.2
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits