CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2021-35202 MEDIUM
NETSCOUT Systems nGeniusONE <6.3.0 - Auth Bypass
CVSS 4.3
CVE-2021-34410 HIGH
Zoom Plugin For Microsoft Outlook - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-34409 HIGH
Zoom Meetings < 5.2.0 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-40067 MEDIUM
Netmotionsoftware Mobility < 12.14 - Incorrect Permission Assignment
CVSS 6.8
CVE-2021-40066 MEDIUM
Netmotionsoftware Mobility < 11.76 - Incorrect Permission Assignment
CVSS 5.3
CVE-2021-39210 MEDIUM
Glpi < 9.5.6 - Incorrect Permission Assignment
CVSS 6.5
CVE-2021-26434 HIGH
Microsoft Visual Studio 2017 < 15.9 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-22149 HIGH
Elastic Enterprise Search < 7.14.0 - Missing Authorization
CVSS 8.8
CVE-2021-22148 HIGH
Elastic Enterprise Search < 7.14.0 - Incorrect Permission Assignment
CVSS 8.8
CVE-2021-22147 MEDIUM
Elasticsearch < 7.14.0 - Missing Authorization
CVSS 6.5
CVE-2021-3706 HIGH
adminlte - XSS
CVSS 7.5
CVE-2021-35508 HIGH
TeraRecon AQNetClient <4.4.13 - Privilege Escalation
CVSS 8.8
CVE-2021-38154 HIGH
Canon devices <2020 - Info Disclosure
CVSS 7.5
CVE-2021-30964 MEDIUM
macOS Monterey <12.1 - Privilege Escalation
CVSS 5.5
CVE-2021-30920 MEDIUM
macOS Monterey 12.0.1 - Info Disclosure
CVSS 5.5
CVE-2021-30892 MEDIUM
macOS <12.0.1, <11.6.1 - Privilege Escalation
CVSS 5.5
CVE-2021-38557 HIGH
RaspAP 2.6.6 - Command Injection
CVSS 8.8
CVE-2021-25263 HIGH
Yandex Browser <21.9.0.390 - Privilege Escalation
CVSS 7.8
CVE-2021-36281 HIGH
Dell EMC PowerScale OneFS <9.2.x - Privilege Escalation
CVSS 7.5
CVE-2021-36280 HIGH
Dell EMC PowerScale OneFS <9.2.x - Info Disclosure
CVSS 7.8
CVE-2021-36279 HIGH
Dell EMC PowerScale OneFS <9.2.x - Info Disclosure
CVSS 7.8
CVE-2021-37841 HIGH
Docker Desktop < 3.6.0 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-38590 MEDIUM
cPanel <96.0.8 - Info Disclosure
CVSS 5.5
CVE-2021-38085 HIGH
Canon TR150 <3.71.2.10 - Privilege Escalation
CVSS 7.8
CVE-2021-21567 HIGH
Dell Powerscale Onefs - Incorrect Permission Assignment
CVSS 7.8
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits