CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2025-34135 MEDIUM
Nagios XI < 2024 - Incorrect Permission Assignment
CVSS 4.4
CVE-2025-11906 MEDIUM
Progress Flowmon <12.5.6 - Privilege Escalation
CVSS 6.7
CVE-2025-54546 HIGH
SSH Port Forwarding - Privilege Escalation
CVSS 7.5
CVE-2025-54545 HIGH
Platform <version> - Privilege Escalation
CVSS 7.8
CVE-2025-12148 MEDIUM
Search Guard <3.1.1 - Info Disclosure
CVE-2025-12147 MEDIUM
Search Guard FLX <3.1.1 - Info Disclosure
CVE-2025-62688 HIGH
Productivity Suite <4.4.1.19 - Privilege Escalation
CVSS 7.1
CVE-2025-12004 CRITICAL
Mediawiki - Lockdown Extension <1.42 - Privilege Escalation
CVE-2025-31702 MEDIUM
Dahua embedded products - Privilege Escalation
CVSS 6.8
CVE-2025-57741 HIGH
Fortinet Forticlient < 7.2.12 - Incorrect Permission Assignment
CVSS 7.8
CVE-2025-62251 MEDIUM
Liferay Digital Experience Platform - Incorrect Permission Assignment
CVSS 6.5
CVE-2025-8886 MEDIUM
Usta Information Systems Inc. Aybs Interaktif - Privilege Escalation
CVSS 6.7
CVE-2025-10751 HIGH
Macenhance Macforge - Incorrect Permission Assignment
CVSS 7.8
CVE-2025-34212 CRITICAL
Vasion Virtual Appliance Application - Incorrect Permission Assignment
CVSS 9.8
CVE-2025-10541 HIGH
iMonitor EAM 9.6394 - Privilege Escalation
CVSS 7.8
CVE-2025-43808 MEDIUM
Liferay Digital Experience Platform - Incorrect Permission Assignment
CVSS 5.3
CVE-2025-34206 CRITICAL
Vasion Virtual Appliance Application - Incorrect Permission Assignment
CVSS 9.8
CVE-2025-34189 HIGH
Vasion Print <1.0.735-20.0.1330 - Code Injection
CVSS 7.8
CVE-2025-54497 HIGH
Cognex In-Sight Explorer and In-Sight Camera Firmware - Privilege E...
CVSS 8.1
CVE-2025-52873 HIGH
Cognex In-Sight Explorer & Camera Firmware - Privilege Escalation
CVSS 8.1
CVE-2025-10643 CRITICAL
Wondershare Repairit - Incorrect Permission Assignment
CVSS 9.1
CVE-2025-59349 LOW
Linuxfoundation Dragonfly < 2.1.0 - Incorrect Permission Assignment
CVSS 3.3
CVE-2025-0164 LOW
IBM QRadar SIEM <7.5.13 - Privilege Escalation
CVSS 2.3
CVE-2025-57392 HIGH
Benimpos - Incorrect Permission Assignment
CVSS 7.8
CVE-2025-40804 CRITICAL
SIMATIC Virtualization as a Service - Info Disclosure
CVSS 9.1
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits