CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2025-13703 HIGH
VIPRE Advanced Security - Privilege Escalation
CVSS 7.8
CVE-2025-13941 HIGH
Foxit Pdf Editor < 13.2.1.23955 - Incorrect Permission Assignment
CVSS 8.8
CVE-2025-68462 LOW
Freedombox <25.17.1 - Info Disclosure
CVSS 3.2
CVE-2025-67794 MEDIUM
Drivelock < 24.1.4 - Incorrect Permission Assignment
CVSS 6.1
CVE-2025-34288 MEDIUM
Nagios XI < 2024 - Incorrect Permission Assignment
CVSS 6.7
CVE-2025-43470 MEDIUM
macOS Tahoe <26.1 - Info Disclosure
CVSS 5.5
CVE-2025-13733 HIGH
Drbuho Buhontfs - Incorrect Permission Assignment
CVSS 7.8
CVE-2025-40818 LOW
Siemens Sinema Remote Connect Server - Incorrect Permission Assignment
CVSS 3.3
CVE-2025-8148 MEDIUM
Fortra Goanywhere Managed File Transfer - Incorrect Authorization
CVSS 4.2
CVE-2025-20387 HIGH
Splunk < 9.2.10 - Incorrect Permission Assignment
CVSS 8.0
CVE-2025-20386 HIGH
Splunk Enterprise <10.0.2-9.4.6-9.3.8-9.2.10 - Info Disclosure
CVSS 8.0
CVE-2025-64642 HIGH
Mirion Biodose/nmis < 23.0 - Incorrect Permission Assignment
CVSS 8.0
CVE-2025-64298 HIGH
Mirion Biodose/nmis < 23.0 - Incorrect Permission Assignment
CVSS 8.4
CVE-2025-62575 HIGH
Mirion Biodose/nmis < 23.0 - Incorrect Permission Assignment
CVSS 8.3
CVE-2025-59373 HIGH
ASUS System Control Interface - Privilege Escalation
CVE-2025-11921 HIGH
iStats <7.10.4 - Command Injection
CVE-2025-64324 HIGH
Kubevirt < 1.6.1 - Information Disclosure
CVSS 7.7
CVE-2025-64996 MEDIUM
Checkmk < 2.3.0 - Incorrect Permission Assignment
CVSS 4.4
CVE-2025-34323 HIGH
Nagios Log Server < 2026 - Incorrect Permission Assignment
CVSS 7.8
CVE-2025-8108 MEDIUM
Axis OS < 12.7.33 - Privilege Escalation
CVSS 6.7
CVE-2025-6779 MEDIUM
Axis OS < 12.6.40 - Incorrect Permission Assignment
CVSS 6.7
CVE-2025-64322 MEDIUM
Salesforce Agentforce Vibes < 3.3.0 - Incorrect Permission Assignment
CVSS 5.3
CVE-2025-64319 MEDIUM
Salesforce Mulesoft Anypoint Code Bui... - Incorrect Permission Assignment
CVSS 5.3
CVE-2025-4952 MEDIUM
ESET - Info Disclosure
CVE-2025-34287 HIGH
Nagios XI < 2024 - Incorrect Permission Assignment
CVSS 7.8
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits