CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2020-0410 MEDIUM
Google Android - Incorrect Permission Assignment
CVSS 5.5
CVE-2020-17415 HIGH
Foxit PhantomPDF 10.0.0.35798 - Privilege Escalation
CVSS 7.8
CVE-2020-17414 HIGH
Foxit Reader 10.0.0.35798 - Privilege Escalation
CVSS 7.8
CVE-2020-15250 MEDIUM
JUnit4 <4.13.1 - Info Disclosure
CVSS 4.4
CVE-2020-26932 MEDIUM
Debian Sympa <6.2.40~dfsg-7 - Privilege Escalation
CVSS 4.3
CVE-2020-15838 HIGH
Connectwise Automate < 2020.8 - Incorrect Permission Assignment
CVSS 8.8
CVE-2020-9048 HIGH
Johnsoncontrols Victor Web Client < 5.4.1 - Improper Authorization
CVSS 7.1
CVE-2020-12302 HIGH
Intel Driver & Support Assistant - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-26106 HIGH
Cpanel < 88.0.3 - Incorrect Permission Assignment
CVSS 7.5
CVE-2020-17365 HIGH
Hotspot Shield VPN client <10.3.0 - Privilege Escalation
CVSS 7.8
CVE-2020-3503 MEDIUM
Cisco Ios XE - Improper Access Control
CVSS 6.0
CVE-2020-12842 CRITICAL
is smart gate PRO 1.5.9 - Privilege Escalation
CVSS 9.8
CVE-2020-12839 CRITICAL
is smart gate PRO 1.5.9 - Privilege Escalation
CVSS 9.8
CVE-2020-12838 CRITICAL
is smart gate PRO <1.5.9 - Privilege Escalation
CVSS 9.8
CVE-2020-25826 HIGH
Pingidentity Pingid Integration For W... - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-16202 HIGH
Advantech Webaccess < 9.0.1 - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-11855 HIGH
Microfocus Operation Bridge Reporter - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-15776 HIGH
Gradle Enterprise < 2020.2.4 - Incorrect Permission Assignment
CVSS 8.8
CVE-2020-1694 MEDIUM
Keycloak <10.0.0 - Info Disclosure
CVSS 4.9
CVE-2020-10781 MEDIUM
Linux Kernel <5.8-rc6 - Memory Corruption
CVSS 5.5
CVE-2020-7314 HIGH
Mcafee Agent < 5.6.6 - Incorrect Permission Assignment
CVSS 8.2
CVE-2020-23834 HIGH
Real Time Logic BarracudaDrive <6.5 - Privilege Escalation
CVSS 8.8
CVE-2020-5369 HIGH
Dell Emc Isilon Onefs - Incorrect Permission Assignment
CVSS 8.8
CVE-2020-24355 CRITICAL
Zyxel VMG5313-B30B - Privilege Escalation
CVSS 9.8
CVE-2020-17402 MEDIUM
Parallels Desktop 15.1.4 - Info Disclosure
CVSS 6.5
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits