CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2022-0338 MEDIUM
Conda loguru <0.5.3 - Info Disclosure
CVSS 4.3
CVE-2022-0277 MEDIUM
Packagist microweber/microweber <1.2.11 - Privilege Escalation
CVSS 6.5
CVE-2022-21694 LOW
Onionshare < 2.5 - Incorrect Permission Assignment
CVSS 3.7
CVE-2022-22988 HIGH
File System - Info Disclosure
CVSS 7.7
CVE-2022-23132 LOW
Zabbix < 4.0.36 - Improper Access Control
CVSS 3.3
CVE-2021-47756 HIGH
Laravel Valet <2.0.3 - Privilege Escalation
CVSS 8.4
CVE-2021-47742 HIGH
Epic Games Psyonix Rocket League <=1.95 - Privilege Escalation
CVSS 8.8
CVE-2021-40331 HIGH
Apache Ranger Hive Plugin <2.4.0 - Privilege Escalation
CVSS 8.1
CVE-2021-3172 HIGH
Php-fusion < 9.10.00 - Incorrect Permission Assignment
CVSS 8.1
CVE-2021-37306 HIGH
Jeecg < 2.4.5 - Incorrect Permission Assignment
CVSS 7.5
CVE-2021-37305 HIGH
Jeecg < 2.4.5 - Incorrect Permission Assignment
CVSS 7.5
CVE-2021-37304 HIGH
Jeecg < 2.4.5 - Incorrect Permission Assignment
CVSS 7.5
CVE-2021-22648 HIGH
Ovarro TBox - Info Disclosure
CVSS 8.8
CVE-2021-45492 HIGH
Sage 300 < 2022 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-38289 HIGH
Novastar-VNNOX-iCare Novaicare <7.16.0 - Privilege Escalation
CVSS 8.8
CVE-2021-38879 MEDIUM
IBM Jazz Team Server <7.0.2 - Info Disclosure
CVSS 5.3
CVE-2021-20355 MEDIUM
IBM Jazz Team Server <7.0.3 - Info Disclosure
CVSS 5.3
CVE-2021-40649 MEDIUM
Connx <6.2.0.1269 - Info Disclosure
CVSS 6.5
CVE-2021-44167 MEDIUM
Fortinet Forticlient < 6.0.8 - Incorrect Permission Assignment
CVSS 6.8
CVE-2021-27764 HIGH
Cookie - Info Disclosure
CVSS 7.4
CVE-2021-23055 MEDIUM
NGINX Ingress Controller <2.0.3-1.12.3 - Command Injection
CVSS 6.5
CVE-2021-38483 MEDIUM
FANUC ROBOGUIDE <= 9.40083.00.05 - Privilege Escalation
CVSS 6.0
CVE-2021-36290 MEDIUM
Dell VNX2 for File <8.1.21.266 - Privilege Escalation
CVSS 6.4
CVE-2021-42855 HIGH
Riverbed Steelcentral Appinternals Dy... - Improper Access Control
CVSS 7.8
CVE-2021-4199 HIGH
Bitdefender Antivirus Plus - Incorrect Permission Assignment
CVSS 7.8
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits