CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732

CVE-2018-13791 CRITICAL

Abbyy Flexicapture - Incorrect Permission Assignment

CVSS 9.8

CVE-2018-1000621 HIGH

Mycroft AI mycroft-core <18.2.8b - RCE

CVSS 8.1

CVE-2018-11259 HIGH

Qualcomm Mdm9206 Firmware - Incorrect Permission Assignment

CVSS 7.7

CVE-2018-13110 HIGH

Adbglobal Dv2210 Firmware - Incorrect Permission Assignment

CVSS 7.5

CVE-2018-13122 MEDIUM

Onefilecms < 3.6.13 - Incorrect Permission Assignment

CVSS 6.5

CVE-2018-11642 HIGH

Dialogic Powermedia Xms < 3.5 - Incorrect Permission Assignment

CVSS 7.8

CVE-2018-1113 MEDIUM

setup <2.11.4-1.fc28 - Privilege Escalation

CVSS 4.8

CVE-2018-10856 MEDIUM

podman <0.6.1 - Privilege Escalation

CVSS 5.3

CVE-2018-10843 HIGH

Redhat Openshift Container Platform - Improper Input Validation

CVSS 8.5

CVE-2018-13025 MEDIUM

Yxcms - Incorrect Permission Assignment

CVSS 4.9

CVE-2018-12922 HIGH

Vertiv Liebert Intellislot Firmware - Incorrect Permission Assignment

CVSS 7.5

CVE-2018-1354 MEDIUM

Fortinet Fortianalyzer < 6.0.0 - Incorrect Permission Assignment

CVSS 6.5

CVE-2018-11053 MEDIUM

Dell Emc Idrac Service Module - Incorrect Permission Assignment

CVSS 6.5

CVE-2018-1000547 MEDIUM

coreBOS <7.0 - Info Disclosure

CVSS 5.3

CVE-2018-1000511 HIGH

WP ULike <3.1 - Incorrect Access Control

CVSS 7.5

CVE-2018-1000510 MEDIUM

WP Image Zoom <1.23 - DoS

CVSS 6.5

CVE-2018-12642 HIGH

Froxlor <0.9.39.5 - Privilege Escalation

CVSS 7.5

CVE-2018-12615 MEDIUM

Phusion Passenger <5.3.2 - Privilege Escalation

CVSS 5.3

CVE-2018-11116 HIGH

Openwrt - Incorrect Permission Assignment

CVSS 8.8

CVE-2018-12028 HIGH

Phusion Passenger 5.3.x <5.3.2 - Info Disclosure

CVSS 7.8

CVE-2018-12027 HIGH

Phusion Passenger 5.3.x <5.3.2 - Info Disclosure

CVSS 8.8

CVE-2018-12335 HIGH

ECOS SMA <5.2.68 - Privilege Escalation

CVSS 7.3

CVE-2018-12457 HIGH

expressCart <1.1.6 - RCE

CVSS 8.8

CVE-2018-1036 HIGH

Microsoft Windows 10 - Incorrect Permission Assignment

CVSS 7.0

CVE-2018-0982 HIGH

Microsoft Windows 10 - Incorrect Permission Assignment

CVSS 7.0

Details

Vulnerabilities 1,622

Exploit Likelihood High

Links