CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2018-12259 MEDIUM
Momentum Axel 720P <5.1.8 - Privilege Escalation
CVSS 6.8
CVE-2018-4251 MEDIUM
Apple Mac OS X < 10.13.5 - Incorrect Permission Assignment
CVSS 5.5
CVE-2018-4238 LOW
Apple Iphone OS < 11.4 - Incorrect Permission Assignment
CVSS 2.4
CVE-2018-4220 HIGH
Apple Swift < 4.1.1 - Incorrect Permission Assignment
CVSS 8.8
CVE-2018-0352 MEDIUM
Cisco Wide Area Application Services - Incorrect Permission Assignment
CVSS 6.7
CVE-2018-11194 HIGH
Quest Disk Backup < 4.0.3.1 - Incorrect Permission Assignment
CVSS 8.8
CVE-2018-11193 HIGH
Quest Disk Backup < 4.0.3.1 - Incorrect Permission Assignment
CVSS 8.8
CVE-2018-11192 HIGH
Quest Disk Backup < 4.0.3.1 - Incorrect Permission Assignment
CVSS 8.8
CVE-2018-11191 HIGH
Quest Disk Backup < 4.0.3.1 - Incorrect Permission Assignment
CVSS 8.8
CVE-2018-1370 MEDIUM
IBM Security Guardium Big Data Intelligence - Info Disclosure
CVSS 4.2
CVE-2018-11334 HIGH
Windscribe - Incorrect Permission Assignment
CVSS 7.8
CVE-2018-1115 CRITICAL
postgresql <10.4, 9.6.9 - Privilege Escalation
CVSS 9.1
CVE-2018-5516 MEDIUM
F5 BIG-IP <13.1.0.5 - Privilege Escalation
CVSS 4.7
CVE-2018-10647 HIGH
SaferVPN 4.2.5 - Privilege Escalation
CVSS 7.8
CVE-2018-10646 HIGH
CyberGhost 6.5.0.3180 - Privilege Escalation
CVSS 7.8
CVE-2018-10645 HIGH
Golden Frog VyprVPN 2.12.1.8015 - Privilege Escalation
CVSS 7.8
CVE-2018-10520 MEDIUM
CMSMS <2.2.7 - Path Traversal
CVSS 6.5
CVE-2018-10519 HIGH
CMSMS 2.2.7 - Privilege Escalation
CVSS 8.8
CVE-2018-10518 MEDIUM
CMSMS <2.2.7 - DoS
CVSS 6.5
CVE-2018-10381 CRITICAL
TunnelBear 3.2.0.6 - Privilege Escalation
CVSS 9.8
CVE-2018-10285 CRITICAL
Ericsson-LG iPECS NMS A.1Ac - Auth Bypass
CVSS 9.8
CVE-2018-10204 HIGH
PureVPN 6.0.1 - Privilege Escalation
CVSS 8.8
CVE-2018-1000165 HIGH
LightSAML <1.3.5 - Privilege Escalation
CVSS 7.5
CVE-2018-1000158 HIGH
cmsmadesimple <2.2.7 - Privilege Escalation
CVSS 8.8
CVE-2018-5342 HIGH
Zoho ManageEngine Desktop Central <10.0.184 - Privilege Escalation
CVSS 7.2
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits