CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2020-5281 MEDIUM
Cesnet Perun < 3.9.1 - Incorrect Permission Assignment
CVSS 6.2
CVE-2020-1709 HIGH
openshift/mediawiki <4.3.0 - Privilege Escalation
CVSS 7.0
CVE-2020-1707 HIGH
openshift/postgresql-apb <4.3.0 - Privilege Escalation
CVSS 7.0
CVE-2020-1705 HIGH
openshift/template-service-broker-operator <4.3.0 - Privilege Escal...
CVSS 7.0
CVE-2020-3948 HIGH
VMware Workstation/Fusion <15.5.2-11.5.2 - Privilege Escalation
CVSS 7.8
CVE-2020-1736 LOW
Ansible Engine - Info Disclosure
CVSS 2.2
CVE-2020-1706 HIGH
openshift/apb-tools-container - Privilege Escalation
CVSS 7.0
CVE-2020-9470 HIGH
Wftpserver Wing FTP Server < 6.2.5 - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-8635 HIGH
Wing FTP Server <6.2.3 - Privilege Escalation
CVSS 7.8
CVE-2020-4278 HIGH
IBM Platform Lsf - Incorrect Permission Assignment
CVSS 7.8
CVE-2020-8768 CRITICAL
Phoenixcontact Ilc 2050 BI Firmware < 1.2.3 - Incorrect Permission Assignment
CVSS 9.4
CVE-2020-1704 HIGH
OpenShift ServiceMesh <1.0.8 - Privilege Escalation
CVSS 7.0
CVE-2020-9024 CRITICAL
Iteris Vantage Velocity Firmware - Incorrect Permission Assignment
CVSS 9.8
CVE-2020-7050 MEDIUM
Codologic Codoforum < 4.8.4 - XSS
CVSS 5.4
CVE-2020-0563 HIGH
Intel Manycore Platform Software Stack - Incorrect Permission Assig...
CVSS 7.8
CVE-2020-7051 MEDIUM
Codologic Codoforum < 4.8.4 - XSS
CVSS 6.1
CVE-2020-0668 HIGH
Microsoft Windows 10 - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-25344 HIGH
Wondershare MobileGo 8.5.0 - Privilege Escalation
CVSS 7.8
CVE-2019-25343 HIGH
NextVPN 4.10 - Privilege Escalation
CVSS 7.8
CVE-2019-25245 HIGH
Ross Video DashBoard 8.5.1 - Privilege Escalation
CVSS 8.8
CVE-2019-18243 MEDIUM
GE Ifix < 6.1 - Incorrect Permission Assignment
CVSS 5.5
CVE-2019-18255 MEDIUM
GE Ifix < 6.1 - Incorrect Permission Assignment
CVSS 5.5
CVE-2019-4702 HIGH
IBM Security Guardium Data Encryption <3.0.0.2 - Info Disclosure
CVSS 8.1
CVE-2019-14480 CRITICAL
AdRem NetCrunch 10.6.0.4587 - Auth Bypass
CVSS 9.8
CVE-2019-11121 HIGH
Intel Media SDK - Incorrect Permission Assignment
CVSS 7.8
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits