CWE-732

High likelihood

Incorrect Permission Assignment for Critical Resource

Parent: CWE-285 - Improper Authorization

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

1,622 vulnerabilities with CWE-732
CVE-2025-23285 MEDIUM
NVIDIA vGPU - DoS
CVSS 5.5
CVE-2025-45150 CRITICAL
X-D LAB Langchain-chatglm-webui - Incorrect Permission Assignment
CVSS 9.8
CVE-2025-43266 MEDIUM
macOS <15.6-13.7.7 - Privilege Escalation
CVSS 5.1
CVE-2025-43247 MEDIUM
macOS < Ventura 13.7.7 - Privilege Escalation
CVSS 5.5
CVE-2025-43243 CRITICAL
macOS <15.6-14.7.7 - Info Disclosure
CVSS 9.8
CVE-2025-26469 CRITICAL
Meddream Pacs Server - Incorrect Permission Assignment
CVSS 9.3
CVE-2025-36104 MEDIUM
IBM Storage Scale - Incorrect Permission Assignment
CVSS 6.5
CVE-2025-30661 HIGH
Juniper Junos - Incorrect Permission Assignment
CVSS 7.3
CVE-2025-27446 HIGH
Apache APISIX(java-plugin-runner) - Privilege Escalation
CVSS 7.8
CVE-2025-6297 HIGH
dpkg-deb - Info Disclosure
CVSS 8.2
CVE-2025-52992 LOW
Nix/Lix/Guix <2.24.15/2.26.4/2.28.4/2.29.1 - Privilege Escalation
CVSS 3.2
CVE-2025-5995 MEDIUM
Canon EOS Webcam Utility Pro for MAC OS <2.3.29 - Privilege Escalation
CVE-2025-36537 HIGH
TeamViewer <15.67 - Privilege Escalation
CVSS 7.0
CVE-2025-52923 MEDIUM
Sangfor aTrust <2.4.10 - Command Injection
CVSS 4.3
CVE-2025-49131 MEDIUM
Fastgpt < 4.9.11 - Incorrect Permission Assignment
CVSS 6.3
CVE-2025-48961 HIGH
Acronis Cyber Protect <16 - Privilege Escalation
CVSS 7.3
CVE-2025-20298 HIGH
SplunkUniversalForwarder <9.4.2-9.1.9 - Privilege Escalation
CVSS 8.0
CVE-2025-2503 HIGH
Lenovo Pcmanager < 5.1.110.5082 - Incorrect Permission Assignment
CVSS 7.1
CVE-2025-48747 MEDIUM
Netwrix Directory Manager <11.0.0.0 - 11.1.25134.03 - Privilege Esc...
CVSS 5.0
CVE-2025-48382 MEDIUM
Fess <14.19.2 - Info Disclosure
CVSS 5.5
CVE-2025-46802 MEDIUM
PTY - Info Disclosure
CVSS 6.0
CVE-2025-40672 HIGH
Panloader v3.24.0.0 - Privilege Escalation
CVE-2025-45472 HIGH
Lumigo Autodeploy-layer < 1.2.0 - Incorrect Permission Assignment
CVSS 8.8
CVE-2025-45468 HIGH
Devsapp Fc-stable-diffusion < 1.0.18 - Incorrect Permission Assignment
CVSS 8.8
CVE-2025-45471 HIGH
Lumigo Measure-cold-start < 1.4.1 - Incorrect Permission Assignment
CVSS 8.8
Details
Vulnerabilities 1,622
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits