CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2021-3631 MEDIUM
Redhat Libvirt < 7.5.0 - Incorrect Permission Assignment
CVSS 6.3
CVE-2021-3557 MEDIUM
Argocd - Privilege Escalation
CVSS 6.5
CVE-2021-44521 CRITICAL
Apache Cassandra < 3.0.26 - Code Injection
CVSS 9.1
CVE-2021-39992 HIGH
Huawei Emui - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-22284 HIGH
ABB Opc Server For AC 800m < 6.0.0-4 - Incorrect Permission Assignment
CVSS 8.4
CVE-2021-29396 CRITICAL
Globalnorthstar Northstar Club Manage... - Incorrect Permission Assignment
CVSS 9.8
CVE-2021-22566 CRITICAL
Linux - Privilege Escalation
CVSS 9.8
CVE-2021-39627 HIGH
Google Android - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-39621 HIGH
Google Android - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-44466 HIGH
Leap Bitmask Riseup VPN - Incorrect Permission Assignment
CVSS 7.3
CVE-2021-20172 HIGH
Netgear Genie Installer - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-20874 HIGH
GroupSession Free/Z/ByCloud <5.1.1 - Info Disclosure
CVSS 7.5
CVE-2021-27445 HIGH
Mesa Labs AmegaView <3.0 - Privilege Escalation
CVSS 7.8
CVE-2021-35248 MEDIUM
Orion - Info Disclosure
CVSS 6.8
CVE-2021-0904 MEDIUM
SRAMROM - Privilege Escalation
CVSS 6.7
CVE-2021-42309 HIGH
Microsoft Sharepoint Enterprise Server - Code Injection
CVSS 8.8
CVE-2021-43065 HIGH
Fortinet FortiNAC <9.2.0 - Privilege Escalation
CVSS 7.8
CVE-2021-36133 HIGH
OPTEE-OS CSU - Privilege Escalation
CVSS 7.1
CVE-2021-44512 HIGH
Tmate-ssh-server < 2.3.0 - Incorrect Permission Assignment
CVSS 7.0
CVE-2021-43034 HIGH
Kaseya Unitrends Backup <10.5.5 - Privilege Escalation
CVSS 7.8
CVE-2021-43359 HIGH
Sunnet eHRD - Privilege Escalation
CVSS 8.8
CVE-2021-40101 HIGH
Concretecms Concrete Cms < 8.5.7 - Incorrect Permission Assignment
CVSS 7.2
CVE-2021-44230 MEDIUM
Portswigger Burp Suite < 2021.11 - Incorrect Permission Assignment
CVSS 6.5
CVE-2021-43998 MEDIUM
HashiCorp Vault <1.7.5-1.8.4 - Info Disclosure
CVSS 6.5
CVE-2021-42115 HIGH
Businessdnasolutions Topease - Incorrect Permission Assignment
CVSS 8.1
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits