CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2019-13208 HIGH
Waves Maxx Audio - Incorrect Permission Assignment
CVSS 7.3
CVE-2019-13012 HIGH
Gnome Glib < 2.59.1 - Incorrect Permission Assignment
CVSS 7.5
CVE-2019-2023 HIGH
Android <9 - Privilege Escalation
CVSS 7.8
CVE-2019-12133 HIGH
Multiple Zoho ManageEngine products - Privilege Escalation
CVSS 7.8
CVE-2019-2257 HIGH
Snapdragon Auto et al - Privilege Escalation
CVSS 7.8
CVE-2019-12777 HIGH
Enttec Datagate Mk2 Firmware - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-8283 MEDIUM
Gemalto Sentinel Ldk < 7.92 - Incorrect Permission Assignment
CVSS 6.5
CVE-2019-12373 CRITICAL
Ivanti LANDESK Management Suite <10.0.1.168 - Info Disclosure
CVSS 9.0
CVE-2019-12589 HIGH
Firejail < 0.9.60 - Incorrect Permission Assignment
CVSS 8.8
CVE-2019-4078 HIGH
IBM Websphere MQ < 8.0.0.11 - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-12042 CRITICAL
Panda <18.07.03 - Privilege Escalation
CVSS 9.8
CVE-2019-10132 HIGH
libvirt >= 4.1.0 - Privilege Escalation
CVSS 8.8
CVE-2019-12102 CRITICAL
Kentico 11-12 - Info Disclosure
CVSS 9.1
CVE-2019-12270 HIGH
OpenText Brava! <16.4 - Info Disclosure
CVSS 7.4
CVE-2019-0171 HIGH
Intel Quartus II < 15.0 - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-0138 HIGH
Intel Acu Wizard < 12.0.0.129 - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-0086 HIGH
Intel Converged Security Management E... - Symlink Following
CVSS 7.8
CVE-2019-10116 MEDIUM
GitLab Community/E Enterprise <11.7.8-11.9.2 - Info Disclosure
CVSS 4.3
CVE-2019-10115 MEDIUM
Gitlab < 11.7.8 - Incorrect Permission Assignment
CVSS 6.5
CVE-2019-10110 MEDIUM
GitLab <11.7.8, <11.8.4, <11.9.2 - Privilege Escalation
CVSS 6.5
CVE-2019-11328 HIGH
Singularity 3.1.0-3.2.0-rc2 - Privilege Escalation
CVSS 8.8
CVE-2019-8342 HIGH
Foxitsoftware Foxit Reader - Incorrect Permission Assignment
CVSS 7.8
CVE-2019-1803 MEDIUM
Cisco Nexus 9000 - Privilege Escalation
CVSS 6.7
CVE-2019-10710 HIGH
Hisilicon Hi3510 Firmware - Incorrect Permission Assignment
CVSS 8.8
CVE-2019-11244 MEDIUM
Kubernetes <1.15 - Info Disclosure
CVSS 5.0
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits