CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2019-19455 HIGH
Wowza Streaming Engine <4.8.5 - Privilege Escalation
CVSS 7.8
CVE-2019-19218 HIGH
BMC Control-M/Agent 7.0.00.000 - Info Disclosure
CVSS 7.5
CVE-2019-20693 MEDIUM
Netgear Wac505 Firmware < 8.0.6.4 - Incorrect Permission Assignment
CVSS 5.4
CVE-2019-4603 MEDIUM
IBM Quality Manager - Privilege Escalation
CVSS 4.3
CVE-2019-19335 MEDIUM
OpenShift 4.2 - Info Disclosure
CVSS 4.4
CVE-2019-5543 HIGH
Vmware Horizon Client < 5.3.0 - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-2089 HIGH
Android <10 - Privilege Escalation
CVSS 7.8
CVE-2019-18577 MEDIUM
Dell EMC XtremIO XMS <6.3.0 - Privilege Escalation
CVSS 6.7
CVE-2019-13009 MEDIUM
Gitlab < 12.0.2 - Denial of Service
CVSS 6.5
CVE-2019-12441 HIGH
Gitlab < 11.11.0 - Incorrect Permission Assignment
CVSS 7.5
CVE-2019-11215 HIGH
Combodo Itop < 2.4.0 - Race Condition
CVSS 8.1
CVE-2019-13321 HIGH
MI Browser < 10.4.0 - Incorrect Permission Assignment
CVSS 8.0
CVE-2019-20358 HIGH
Trendmicro Anti-threat Toolkit - Uncontrolled Search Path
CVSS 7.8
CVE-2019-7656 HIGH
Wowza Streaming Engine <4.8.0 - Privilege Escalation
CVSS 7.8
CVE-2019-19363 HIGH
Ricoh <2020 - Privilege Escalation
CVSS 7.8
CVE-2019-19895 HIGH
Ixpdata Easyinstall - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-19894 MEDIUM
Ixpdata Easyinstall - Incorrect Permission Assignment
CVSS 5.5
CVE-2019-14629 MEDIUM
Intel(R) DAAL <2020 Gold - Info Disclosure
CVSS 5.5
CVE-2019-3683 HIGH
Suse Openstack Cloud < 2019-02-18 - Incorrect Permission Assignment
CVSS 8.8
CVE-2019-20327 HIGH
Centreon < 19.10 - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-16784 HIGH
PyInstaller <3.6 - Privilege Escalation
CVSS 7.0
CVE-2019-19727 MEDIUM
SchedMD Slurm <18.08.9, <19.05.5 - Privilege Escalation
CVSS 5.5
CVE-2019-19263 MEDIUM
GitLab EE <12.5 - Info Disclosure
CVSS 4.3
CVE-2019-19262 MEDIUM
GitLab EE <12.5 - Info Disclosure
CVSS 4.3
CVE-2019-19087 MEDIUM
Gitlab EE <12.5.1 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits