CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,624 vulnerabilities with CWE-732
CVE-2017-8856 CRITICAL
Veritas Netbackup < 8.0 - Incorrect Permission Assignment
CVSS 9.8
CVE-2017-0352 HIGH
Nvidia Gpu Driver - Incorrect Permission Assignment
CVSS 7.8
CVE-2017-8391 MEDIUM
CA Client Automation - Incorrect Permission Assignment
CVSS 5.5
CVE-2017-2115 MEDIUM
Cybozu Office 10.0.0-10.5.0 - Auth Bypass
CVSS 4.3
CVE-2017-7850 HIGH
Tenable Nessus - Incorrect Permission Assignment
CVSS 7.8
CVE-2017-7849 MEDIUM
Tenable Nessus - Incorrect Permission Assignment
CVSS 5.5
CVE-2017-7889 HIGH
Linux Kernel < 3.2.91 - Incorrect Permission Assignment
CVSS 7.8
CVE-2017-3006 HIGH
Adobe Creative Cloud < 3.9.5.353 - Incorrect Permission Assignment
CVSS 8.8
CVE-2017-0884 MEDIUM
Nextcloud Server <9.0.55,10.0.2 - Info Disclosure
CVSS 4.3
CVE-2017-0883 MEDIUM
Nextcloud Server <9.0.55,10.0.2 - Privilege Escalation
CVSS 6.4
CVE-2017-6338 MEDIUM
Trendmicro Interscan Web Security Vir... - Incorrect Permission Assignment
CVSS 6.5
CVE-2017-7307 MEDIUM
Riverbed RiOS <9.0.1 - Privilege Escalation
CVSS 6.8
CVE-2017-5199 HIGH
SolarWinds LEM <6.3.1 - Authenticated RCE
CVSS 8.8
CVE-2017-6950 CRITICAL
SAP GUI 7.2-7.5 - Code Injection
CVSS 9.8
CVE-2017-7199 HIGH
Nessus <6.10.3 - Privilege Escalation
CVSS 7.8
CVE-2017-6356 MEDIUM
Paloaltonetworks Terminal Services Agent - Incorrect Permission Assignment
CVSS 5.3
CVE-2017-2290 HIGH
mcollective-puppet-agent <1.12.1 - Privilege Escalation
CVSS 8.8
CVE-2017-6104 HIGH
Zen Mobile App Native < 3.0 - Authentication Bypass
CVSS 7.5
CVE-2017-0317 HIGH
Nvidia Gpu Driver - Incorrect Permission Assignment
CVSS 7.5
CVE-2017-0311 HIGH
Nvidia Gpu Driver - Incorrect Permission Assignment
CVSS 8.8
CVE-2017-0423 MEDIUM
Google Android - Incorrect Permission Assignment
CVSS 5.3
CVE-2016-11080 MEDIUM
Mattermost Server < 3.0.0 - Incorrect Permission Assignment
CVSS 4.3
CVE-2016-11077 LOW
Mattermost Server < 3.0.0 - Incorrect Permission Assignment
CVSS 2.7
CVE-2016-11065 MEDIUM
Mattermost Server < 3.3.0 - Incorrect Permission Assignment
CVSS 4.3
CVE-2016-11062 MEDIUM
Mattermost Server < 3.5.1 - Incorrect Permission Assignment
CVSS 5.3
Details
Vulnerabilities 1,624
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits