CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2018-12200 MEDIUM
Intel Capability Licensing Service < 1.50.638.1 - Incorrect Permission Assignment
CVSS 6.7
CVE-2018-20621 HIGH
Microvirt Memu - Incorrect Permission Assignment
CVSS 7.8
CVE-2018-20798 HIGH
Netgate Pfsense - Incorrect Permission Assignment
CVSS 7.5
CVE-2018-18495 MEDIUM
Mozilla Firefox < 64.0 - Incorrect Permission Assignment
CVSS 6.5
CVE-2018-12396 MEDIUM
Firefox ESR < 60.3 - Privilege Escalation
CVSS 6.5
CVE-2018-9867 MEDIUM
Sonicwall Sonicos < 5.9.1.10 - Improper Authorization
CVSS 5.5
CVE-2018-10612 CRITICAL
CODESYS Control V3 <3.5.14.0 - Info Disclosure
CVSS 9.8
CVE-2018-13374 MEDIUM KEV
Fortinet Fortiadc < 5.4.5 - Incorrect Permission Assignment
CVSS 4.3
CVE-2018-18812 MEDIUM
Tibco Spotfire Analytics Platform For... - Incorrect Permission Assignment
CVSS 6.5
CVE-2018-14662 MEDIUM
Ceph <13.2.4 - Privilege Escalation
CVSS 5.7
CVE-2018-5413 HIGH
Imperva SecureSphere <13.0-11.5 - Privilege Escalation
CVSS 8.8
CVE-2018-3703 HIGH
Intel Ssd Data Center Tool < 3.0.17 - Incorrect Permission Assignment
CVSS 7.8
CVE-2018-18098 HIGH
Intel Sgx Platform Software - Incorrect Permission Assignment
CVSS 7.3
CVE-2018-12177 HIGH
Intel(R) PROSet/Wireless WiFi <20.90.0.7 - Privilege Escalation
CVSS 7.8
CVE-2018-0449 MEDIUM
Cisco Jabber Client Framework - Privilege Escalation
CVSS 4.2
CVE-2018-16087 MEDIUM
Google Chrome < 69.0.3497.81 - Incorrect Permission Assignment
CVSS 4.3
CVE-2018-20131 HIGH
Code42 <6.8.4 - Privilege Escalation
CVSS 7.8
CVE-2018-14987 HIGH
MXQ TV Box 4.4.2 - Info Disclosure
CVSS 7.1
CVE-2018-20567 MEDIUM
Douco Douphp - Incorrect Permission Assignment
CVSS 5.3
CVE-2018-20420 MEDIUM
Weberp - Incorrect Permission Assignment
CVSS 4.9
CVE-2018-18332 HIGH
Trendmicro Officescan - Incorrect Permission Assignment
CVSS 7.5
CVE-2018-18331 HIGH
Trendmicro Officescan - Incorrect Permission Assignment
CVSS 7.5
CVE-2018-11964 HIGH
Android - Info Disclosure
CVSS 7.8
CVE-2018-6978 MEDIUM
Vmware Vrealize Operations - Incorrect Permission Assignment
CVSS 6.7
CVE-2018-3705 MEDIUM
Intel System Defense Utility - Incorrect Permission Assignment
CVSS 5.5
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits