CWE-732
High likelihoodIncorrect Permission Assignment for Critical Resource
Parent: CWE-285 - Improper Authorization
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.
1,622 vulnerabilities with CWE-732
CVE-2021-24703
MEDIUM
WordPress Download Plugin <1.6.1 - CSRF
CVSS 5.7
CVE-2021-43019
HIGH
Adobe Creative Cloud <5.5 - Privilege Escalation
CVSS 7.8
CVE-2021-39235
MEDIUM
Apache Ozone < 1.2.0 - Incorrect Permission Assignment
CVSS 6.5
CVE-2021-0064
HIGH
Intel Ax210 Firmware < 22.40 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-33094
HIGH
Intel Nuc M15 Laptop Kit Keyboard Led Service Driver Pack < 1.0.0.4 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-33093
HIGH
Intel Nuc M15 Laptop Kit Serial IO Driver Pack < 30.100.2104.1 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-33091
HIGH
Intel(R) NUC M15 Laptop Kit audio driver <1.3 - Privilege Escalation
CVSS 7.8
CVE-2021-42955
HIGH
Zoho Remote Access Plus Server <10.1.2132 - Privilege Escalation
CVSS 7.3
CVE-2021-42954
HIGH
Zoho Remote Access Plus Server - Privilege Escalation
CVSS 7.8
CVE-2021-37207
HIGH
Siemens Sentron Powermanager 3 < 3.6 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-41170
CRITICAL
neoan3-apps/template <1.1.1 - Code Injection
CVSS 9.8
CVE-2021-20526
MEDIUM
IBM Planning Analytics 2.0 - Info Disclosure
CVSS 5.3
CVE-2021-41589
CRITICAL
Gradle Build Cache Node < 10.0 - Incorrect Permission Assignment
CVSS 9.8
CVE-2021-37364
HIGH
Openclinic GA - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-40343
HIGH
Nagios XI <5.8.5 - Privilege Escalation
CVSS 7.8
CVE-2021-38475
HIGH
Database Server - Privilege Escalation
CVSS 7.3
CVE-2021-31377
MEDIUM
Juniper Junos - Incorrect Permission Assignment
CVSS 5.5
CVE-2021-26589
MEDIUM
HPE Superdome Flex Firmware - Incorrect Permission Assignment
CVSS 6.1
CVE-2021-41802
LOW
Hashicorp Vault < 1.7.5 - Incorrect Permission Assignment
CVSS 2.9
CVE-2021-34758
MEDIUM
Cisco Telepresence Collaboration Endp... - Incorrect Permission Assignment
CVSS 4.4
CVE-2021-20264
HIGH
Oracle Openjdk - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-0692
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-41091
MEDIUM
Moby - Path Traversal
CVSS 6.3
CVE-2021-39868
MEDIUM
Gitlab < 14.1.7 - Incorrect Permission Assignment
CVSS 4.3
CVE-2021-3747
HIGH
Multipass <1.7.2 - Privilege Escalation
CVSS 8.8
Details
Vulnerabilities
1,622
Exploit Likelihood
High