CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2021-0102 HIGH
Intel Unite < 4.2.25031 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-0077 HIGH
Intel Vtune Profiler < 2021.1.1 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-0056 HIGH
Intel Lapbc510 Firmware < 1.1 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-0055 HIGH
Intel Lapqc71a Firmware < 10.42 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-0105 HIGH
Intel AC 9461 Firmware < 22.0 - Incorrect Permission Assignment
CVSS 7.3
CVE-2021-32460 HIGH
Trendmicro Maximum Security 2021 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-23021 MEDIUM
Nginx Controller <3.7.0 - Info Disclosure
CVSS 5.5
CVE-2021-31155 HIGH
please <0.4 - Privilege Escalation
CVSS 7.8
CVE-2021-33586 MEDIUM
InspIRCd <3.10.0 - Memory Corruption
CVSS 4.3
CVE-2021-33509 CRITICAL
Plone <5.2.4 - Code Injection
CVSS 9.9
CVE-2021-31475 HIGH
Solarwinds Orion Job Scheduler - Incorrect Permission Assignment
CVSS 8.8
CVE-2021-22117 HIGH
Broadcom Rabbitmq Server < 3.8.16 - Code Injection
CVSS 7.8
CVE-2021-20996 MEDIUM
WAGO Managed Switches - Info Disclosure
CVSS 5.3
CVE-2021-31167 HIGH
Microsoft Windows 10 - Incorrect Permission Assignment
CVSS 7.8
CVE-2021-31907 MEDIUM
Jetbrains Teamcity < 2020.2.2 - Incorrect Permission Assignment
CVSS 5.3
CVE-2021-31902 HIGH
Jetbrains Youtrack < 2020.6.6600 - Incorrect Permission Assignment
CVSS 7.5
CVE-2021-32056 MEDIUM
Cyrus Imap < 3.2.7 - Incorrect Permission Assignment
CVSS 4.3
CVE-2021-32101 HIGH
Open-emr Openemr - Incorrect Permission Assignment
CVSS 8.2
CVE-2021-31918 HIGH
Redhat Openstack - Information Disclosure
CVSS 7.5
CVE-2021-29247 MEDIUM
Btcpayserver Btcpay Server < 1.0.7.0 - Incorrect Permission Assignment
CVSS 5.3
CVE-2021-20326 MEDIUM
Mongodb < 4.4.4 - Improper Input Validation
CVSS 6.5
CVE-2021-28269 HIGH
Soyal Technology 701Client <9.0.1 - Privilege Escalation
CVSS 8.8
CVE-2021-22669 HIGH
WebAccess/SCADA <9.0.1 - Privilege Escalation
CVSS 8.8
CVE-2021-31540 HIGH
Wowza Streaming Engine < 4.8.5 - Incorrect Permission Assignment
CVSS 7.1
CVE-2021-28098 HIGH
Forescout CounterACT <8.1.4 - Privilege Escalation
CVSS 7.8
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits