CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2018-1420 MEDIUM
IBM WebSphere Portal - Info Disclosure
CVSS 5.3
CVE-2018-17776 HIGH
PCProtect Anti-Virus <4.8.35 - Privilege Escalation
CVSS 7.8
CVE-2018-14650 MEDIUM
sos-collector - Info Disclosure
CVSS 5.9
CVE-2018-16588 HIGH
Suse Shadow < 4.2.1-27.9.1 - Incorrect Permission Assignment
CVSS 7.8
CVE-2018-14327 HIGH
Alcatel OSPREY3_MINI - Privilege Escalation
CVSS 7.8
CVE-2018-8848 HIGH
Philips e-Alert Unit <R2.1 - Privilege Escalation
CVSS 7.5
CVE-2018-6040 MEDIUM
Google Chrome <64.0.3282.119 - CSRF
CVSS 6.5
CVE-2018-14825 MEDIUM
Honeywell Mobile Computers - Multiple Versions - Info Disclosure
CVSS 5.8
CVE-2018-11240 CRITICAL
Softcase T-router Firmware - Incorrect Permission Assignment
CVSS 9.8
CVE-2018-1711 HIGH
IBM Db2 - Incorrect Permission Assignment
CVSS 8.4
CVE-2018-11277 HIGH
Qualcomm Msm8909w Firmware - Incorrect Permission Assignment
CVSS 7.8
CVE-2018-16958 MEDIUM
Oracle WebCenter Interaction Portal 10.3.3 - Info Disclosure
CVSS 5.4
CVE-2018-17037 HIGH
UCMS 1.4.6 - Privilege Escalation
CVSS 8.8
CVE-2018-12168 HIGH
Intel Computing Improvement Program < 2.2.0.03942 - Incorrect Permission Assignment
CVSS 7.8
CVE-2018-12162 HIGH
Intel OpenVINO Toolkit <2018.1.265 - Code Injection
CVSS 7.8
CVE-2018-12148 HIGH
Intel Driver and Support Assistant <3.5.0.1 - Privilege Escalation
CVSS 7.8
CVE-2018-15502 HIGH
Lwolf Loading Docs - Incorrect Permission Assignment
CVSS 7.5
CVE-2018-13412 HIGH
Zohocorp Manageengine Desktop Central < 10.0.282 - Incorrect Permission Assignment
CVSS 7.8
CVE-2018-13411 HIGH
Zohocorp Manageengine Desktop Central < 10.0.282 - Incorrect Permission Assignment
CVSS 8.8
CVE-2018-11078 MEDIUM
Dell Emc Vplex Geosynchrony < 6.1 - Incorrect Permission Assignment
CVSS 4.0
CVE-2018-16715 HIGH
Absolute Ctes Windows Agent < 1.0.0.1479 - Incorrect Permission Assignment
CVSS 8.8
CVE-2018-16703 MEDIUM
Gleez CMS 1.2.0 - Info Disclosure
CVSS 5.3
CVE-2018-1000660 HIGH
Tock < 1.2 - Incorrect Permission Assignment
CVSS 7.5
CVE-2018-16145 HIGH
Opsview < 5.3.1 - Incorrect Permission Assignment
CVSS 8.1
CVE-2018-15681 CRITICAL
BTITeam XBTIT <2.5.4 - Info Disclosure
CVSS 9.8
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits