CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2021-32577 HIGH
Acronis True Image - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-30577 HIGH
Google Chrome <92.0.4515.107 - Privilege Escalation
CVSS 7.8
CVE-2021-32463 HIGH
Trendmicro Apex One - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-32760 MEDIUM
containerd <1.4.8-1.5.4 - Privilege Escalation
CVSS 5.0
CVE-2021-35449 HIGH
Lexmark Universal Print Driver <2.15.1.0 - Privilege Escalation
CVSS 7.8
CVE-2021-25318 HIGH
Rancher <2.5.9, <2.4.16 - Privilege Escalation
CVSS 8.8
CVE-2021-31859 HIGH
Ysoft Safeq - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-20423 HIGH
IBM Cloud Pak for Applications 4.3 - Privilege Escalation
CVSS 8.8
CVE-2021-31894 HIGH
Siemens Simatic Pcs 7 Firmware < 8.2 - Incorrect Permission Assignment
CVSS 8.8
CVE-2021-22921 HIGH
Node.js <16.4.1,14.17.2,12.22.2 - Privilege Escalation
CVSS 7.8
CVE-2021-34110 HIGH
Nica Winwaste.net - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-20416 MEDIUM
IBM Guardium Data Encryption <4.0.0.4 - Info Disclosure
CVSS 5.3
CVE-2021-32526 MEDIUM
Qsan Storage Manager < 3.3.1 - Incorrect Permission Assignment
CVSS 6.5
CVE-2021-36129 MEDIUM
MediaWiki <1.36 - Privilege Escalation
CVSS 4.3
CVE-2021-32729 LOW
XWiki Platform <12.6.88-13.0 - Auth Bypass
CVSS 2.0
CVE-2021-23275 HIGH
TIBCO - Buffer Overflow
CVSS 8.8
CVE-2021-32717 HIGH
Shopware <6.4.1.1 - Info Disclosure
CVSS 7.5
CVE-2021-0552 MEDIUM
Android <11 - Privilege Escalation
CVSS 5.5
CVE-2021-0572 MEDIUM
Android -11 - Privilege Escalation
CVSS 5.5
CVE-2021-0570 HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-27483 HIGH
ZOLL Defibrillator Dashboard <2.2 - Privilege Escalation
CVSS 7.8
CVE-2021-0477 HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-25393 MEDIUM
SecSettings <SMR MAY-2021 Release 1 - Privilege Escalation
CVSS 6.6
CVE-2021-23022 HIGH
BIG-IP Edge Client <7.2.1.3 & <7.1.9.9 - Info Disclosure
CVSS 7.8
CVE-2021-31929 MEDIUM
Annexcloud Loyalty Experience Platform < 2021.1.0.1 - Incorrect Permission Assignment
CVSS 4.3
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits