CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2019-14824 MEDIUM
Fedoraproject 389 Directory Server - Incorrect Permission Assignment
CVSS 6.5
CVE-2019-5642 LOW
Rapid7 Metasploit < 4.16.0 - Incorrect Permission Assignment
CVSS 3.3
CVE-2019-5068 MEDIUM
X11 Mesa 3D Graphics Library <19.1.2 - Memory Corruption
CVSS 4.4
CVE-2019-10084 HIGH
Apache Impala 2.7.0-3.2.0 - Auth Bypass
CVSS 7.5
CVE-2019-18422 HIGH
Xen <4.12.x - DoS/Privilege Escalation
CVSS 8.8
CVE-2019-18409 HIGH
Zenspider Ruby Parser-legacy - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-18192 HIGH
GNU Guix - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-8071 CRITICAL
Adobe Download Manager - Incorrect Permission Assignment
CVSS 9.8
CVE-2019-11167 HIGH
Intel Smart Connect Technology - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-11528 HIGH
Softing uaGate SI <1.60.01 - Path Traversal
CVSS 7.5
CVE-2019-11526 CRITICAL
Softing uaGate SI <1.60.01 - Path Traversal
CVSS 9.8
CVE-2019-1378 HIGH
Windows 10 Update Assistant - Privilege Escalation
CVSS 7.8
CVE-2019-3765 HIGH
Dell Emc Avamar Server < 2.4 - Incorrect Permission Assignment
CVSS 8.1
CVE-2019-0073 MEDIUM
Juniper Junos - Incorrect Permission Assignment
CVSS 6.6
CVE-2019-6465 MEDIUM
ISC Bind < 9.10.7 - Incorrect Permission Assignment
CVSS 5.3
CVE-2019-17051 HIGH
Evernote < 7.13 - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-9378 HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2019-12245 MEDIUM
SilverStripe <4.3.3 - Info Disclosure
CVSS 5.3
CVE-2019-13356 HIGH
Totaldefense Anti-virus - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-13355 HIGH
Totaldefense Anti-virus - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-9008 HIGH
Codesys Control For Beaglebone - Incorrect Permission Assignment
CVSS 8.8
CVE-2019-15721 MEDIUM
Gitlab < 12.0.8 - Incorrect Permission Assignment
CVSS 5.4
CVE-2019-11166 MEDIUM
Intel Easy Streaming Wizard - Incorrect Permission Assignment
CVSS 6.7
CVE-2019-16354 MEDIUM
Beego 1.10.0 - Info Disclosure
CVSS 4.7
CVE-2019-16187 HIGH
Limesurvey <3.17.14 - CSRF
CVSS 7.5
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits