CWE-732
High likelihoodIncorrect Permission Assignment for Critical Resource
Parent: CWE-285 - Improper Authorization
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.
1,666 vulnerabilities with CWE-732
CVE-2009-3482
HIGH
TrustPort Antivirus < 2.8.0.2266 and PC Security < 2.0.0.1291 - Incorrect Permission Assignment for Critical Resource
CVSS 7.8
CVE-2009-3289
HIGH
glib 2.0 - Incorrect Permission Assignment via g_file_copy Function
CVSS 7.8
CVE-2009-1073
MEDIUM
nss-ldapd < 0.6.8 - Unauthenticated Sensitive Information Disclosure via World-Readable Configuration File
CVSS 5.5
CVE-2009-0115
HIGH
Device Mapper <0.4.8 - Command Injection
CVSS 7.8
CVE-2009-0141
MEDIUM
XTerm <10.5.6 - Local Info Disclosure
CVSS 5.5
CVE-2008-4870
dovecot 1.0.7 - Unprotected Credential Exposure via World-Readable Configuration File
CVE-2008-3789
Samba 3.2.0-3.2.2 - Incorrect Permission Assignment for Critical Resource
CVE-2008-0322
HIGH
Microsoft Windows XP - Privilege Escalation via I2O Utility Filter Driver Device Interface
CVSS 7.8
CVE-2008-0884
Red Hat Enterprise Linux - Incorrect Permission Assignment for Critical Resource in capp-lspp-config Script
CVE-2008-0662
HIGH
Check Point VPN-1 SecureClient NGX R60 and R56 - Unprotected Credential Exposure via Registry Key Permissions
CVSS 7.8
CVE-2007-5743
HIGH
viewvc 1.0.3 - Incorrect Permission Assignment for Critical Resource
CVSS 7.5
CVE-2007-6033
HIGH
Invensys Wonderware InTouch 8.0 - Code Injection
CVSS 8.8
CVE-2007-5544
HIGH
IBM Lotus Notes/Domino < 6.5.6/7.0.3 - Unauthenticated Info Disclosure & Script Injection via Weak IPC
CVSS 7.8
CVE-2005-4868
HIGH
IBM DB2 Universal Database 8.1 - Unauthorized Access via Shared Memory Permissions
CVSS 7.1
CVE-2004-1714
HIGH
BlackICE PC and Server Protection - Incorrect Permission Assignment for Critical Resource
CVSS 7.1
CVE-2001-0006
HIGH
Windows NT 4.0 - Denial of Service via Winsock2ProtocolCatalogMutex Permission Modification
CVSS 7.1
Details
Vulnerabilities
1,666
Exploit Likelihood
High