CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2026-22280 MEDIUM
Dell Powerscale Onefs < 9.5.1.6 - Incorrect Permission Assignment
CVSS 5.0
CVE-2026-24049 HIGH
wheel <0.47 - Privilege Escalation
CVSS 7.1
CVE-2026-20092 MEDIUM
Cisco Intersight Virtual Appliance - Privilege Escalation
CVSS 6.0
CVE-2025-41118 CRITICAL
Sensitive COS `SecretKey` exposed in plaintext via configuration API due to missing type protection
CVSS 9.1
CVE-2025-15037 MEDIUM
ASUS Business System Control Interface - Privilege Escalation
CVE-2025-41712 MEDIUM
Device - Info Disclosure
CVSS 6.5
CVE-2025-30413 MEDIUM
Acronis Cyber Protect <40497/41186 - Info Disclosure
CVSS 4.4
CVE-2025-11790 MEDIUM
Acronis Cyber Protect Cloud Agent <41124 - Info Disclosure
CVSS 4.4
CVE-2025-12801 MEDIUM
nfs-utils - Privilege Escalation
CVSS 6.5
CVE-2025-70342 MEDIUM
erase-install <v40.4 - Info Disclosure
CVSS 6.6
CVE-2025-70341 HIGH
App-Auto-Patch 3.4.2 - Privilege Escalation
CVSS 7.8
CVE-2025-14604 MEDIUM
IBM Storage Scale 5.2.3.0-5.2.3.5/6.0.0.0-6.0.0.1 - Privilege Escal...
CVSS 6.6
CVE-2025-33088 HIGH
IBM Concert 1.0.0-2.1.0 - Privilege Escalation
CVSS 7.4
CVE-2025-61969 HIGH
AMD µProf - Privilege Escalation
CVE-2025-35999 MEDIUM
Intel(R) Server Boards and Intel(R) Server Systems <16.0.12 - Privi...
CVSS 6.7
CVE-2025-14740 MEDIUM
Docker Desktop for Windows - Privilege Escalation
CVSS 6.7
CVE-2025-52627 MEDIUM
Hcltech Aion - Incorrect Permission Assignment
CVSS 5.5
CVE-2025-14988 CRITICAL
ibaPDA - Info Disclosure
CVE-2025-12985 HIGH
IBM Licensing Operator - Privilege Escalation
CVSS 8.4
CVE-2025-59961 MEDIUM
Juniper Junos < 21.2 - Incorrect Permission Assignment
CVSS 5.5
CVE-2025-67246 HIGH
Ludashi Driver < 5.1025 - Improper Privilege Management
CVSS 7.3
CVE-2025-69426 CRITICAL
Ruckus vRIoT IoT Controller <3.0.0.0 - Privilege Escalation
CVE-2025-14979 HIGH
AirVPN Eddie <2.24.6 - Privilege Escalation
CVSS 7.8
CVE-2025-64699 HIGH
Sevencs Ec2007 Kernel - Incorrect Permission Assignment
CVSS 7.8
CVE-2025-66723 HIGH
inMusic Brands Engine DJ <4.3.4 - Info Disclosure
CVSS 7.5
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits