CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2020-24578 MEDIUM
D-Link DSL-2888A <AU_2.31_V1.1.47ae55 - Info Disclosure
CVSS 6.5
CVE-2020-25011 CRITICAL
Kyland Kps2204 6 Port Managed Din-rai... - Incorrect Permission Assignment
CVSS 9.8
CVE-2020-25191 HIGH
NI Compactrio Firmware < 20.5 - Incorrect Permission Assignment
CVSS 7.5
CVE-2020-8908 LOW
Guava - Info Disclosure
CVSS 3.3
CVE-2020-7337 MEDIUM
Mcafee Virusscan Enterprise < 8.8 - Incorrect Permission Assignment
CVSS 6.5
CVE-2020-4625 MEDIUM
IBM Cloud Pak For Security - Incorrect Permission Assignment
CVSS 5.3
CVE-2020-29074 HIGH
X11vnc - Incorrect Permission Assignment
CVSS 8.8
CVE-2020-10762 MEDIUM
gluster-block <0.5.1 - Info Disclosure
CVSS 5.5
CVE-2020-11831 CRITICAL
Oppo Ovoicemanager - Incorrect Permission Assignment
CVSS 9.8
CVE-2020-28914 HIGH
Katacontainers Kata-containers - Incorrect Permission Assignment
CVSS 7.1
CVE-2020-24525 HIGH
Intel(R) NUC - Privilege Escalation
CVSS 7.8
CVE-2020-16990 MEDIUM
Microsoft Azure Sphere < 20.07 - Incorrect Permission Assignment
CVSS 6.2
CVE-2020-24367 HIGH
BlueStacks 4-4.230 - Privilege Escalation
CVSS 7.8
CVE-2020-28055 HIGH
TCL 32s330 Firmware - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-3595 HIGH
Cisco Sd-wan < 20.1.2 - Improper Privilege Management
CVSS 7.8
CVE-2020-17490 MEDIUM
SaltStack Salt <3002 - Info Disclosure
CVSS 5.5
CVE-2020-15708 CRITICAL
Canonical Ubuntu Linux - Incorrect Permission Assignment
CVSS 9.3
CVE-2020-27992 HIGH
Wondershare Dr.fone - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-27658 HIGH
Synology Router Manager <1.2.4-8081 - Info Disclosure
CVSS 7.1
CVE-2020-26133 HIGH
Dual Dhcp DNS Server - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-26132 HIGH
Home DNS Server - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-26131 HIGH
Open Dhcp Server - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-26130 HIGH
Open Tftp Server - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-10140 HIGH
Acronis True Image - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-15910 MEDIUM
Solarwinds N-central < 12.3 - Incorrect Permission Assignment
CVSS 4.7
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits