Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVEs (1,659)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-15336 1Lavamobiles 1Z61 Firmware Nov 21, 2024 Nov 14, 2019 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 The Lava Z61 Turbo Android device with a build fingerprint of LAVA/Z61_Turbo/Z61_Turbo:8.1.0/O11019/1536917928:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (version...Show more The Lava Z61 Turbo Android device with a build fingerprint of LAVA/Z61_Turbo/Z61_Turbo:8.1.0/O11019/1536917928:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400, versionName=v4.0.31) that allows any app co-located on the device to programmatically disable and enable Wi-Fi without the corresponding access permission through an exported interface.Show less
CVE-2019-15335 1Lavamobiles 1Z92 Firmware Nov 21, 2024 Nov 14, 2019 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 The Lava Z92 Android device with a build fingerprint of LAVA/Z92/Z92:8.1.0/O11019/1535088037:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400, versionN...Show more The Lava Z92 Android device with a build fingerprint of LAVA/Z92/Z92:8.1.0/O11019/1535088037:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400, versionName=v4.0.27) that allows any app co-located on the device to programmatically disable and enable Wi-Fi without the corresponding access permission through an exported interface.Show less
CVE-2019-15334 1Lavamobiles 1Iris 88 Firmware Nov 21, 2024 Nov 14, 2019 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 The Lava Iris 88 Go Android device with a build fingerprint of LAVA/iris88_go/iris88_go:8.1.0/O11019/1538188945:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versio...Show more The Lava Iris 88 Go Android device with a build fingerprint of LAVA/iris88_go/iris88_go:8.1.0/O11019/1538188945:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400, versionName=v4.0.27) that allows any app co-located on the device to programmatically disable and enable Wi-Fi without the corresponding access permission through an exported interface.Show less
CVE-2019-15333 1Lavamobiles 1Flair Z1 Firmware Nov 21, 2024 Nov 14, 2019 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 The Lava Flair Z1 Android device with a build fingerprint of LAVA/Z1/Z1:8.1.0/O11019/1536680131:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400, versi...Show more The Lava Flair Z1 Android device with a build fingerprint of LAVA/Z1/Z1:8.1.0/O11019/1536680131:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400, versionName=v4.0.27) that allows any app co-located on the device to programmatically disable and enable Wi-Fi without the corresponding access permission through an exported interface.Show less
CVE-2019-11155 1Intel 1Proset/wireless Wifi Nov 21, 2024 Nov 14, 2019 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may allow an authenticated user to potentially enable denial of service and information disclosure via local access.
CVE-2019-11154 1Intel 1Proset/wireless Wifi Nov 21, 2024 Nov 14, 2019 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may allow an authenticated user to potentially enable denial of service and information disclosure via local access.
CVE-2012-1160 2Fedoraproject Moodle 2Fedora Moodle Nov 21, 2024 Nov 14, 2019 N/A· v4 2.7 LOW· v3 4.0 MEDIUM· v2 Moodle before 2.2.2 has a permission issue in Forum Subscriptions where unenrolled users can subscribe/unsubscribe via mod/forum/index.php
CVE-2019-18895 1Scanguard 1Scanguard Antivirus Nov 21, 2024 Nov 14, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Scanguard through 2019-11-12 on Windows has Insecure Permissions for the installation directory, leading to privilege escalation via a Trojan horse executable file.
CVE-2019-1457 1Microsoft 1Office Nov 21, 2024 Nov 12, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A security feature bypass vulnerability exists in Microsoft Office software by not enforcing macro settings on an Excel document, aka 'Microsoft Office Excel Security Feature Bypass'.
CVE-2019-18856 1Drupal 1Svg Sanitizer Nov 21, 2024 Nov 11, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A Denial Of Service vulnerability exists in the SVG Sanitizer module through 8.x-1.0-alpha1 for Drupal because access to external resources with an SVG use element is mishandled.
CVE-2019-13535 1Medtronic 2Valleylab Ft10 Energy Platform Firmware Valleylab Ls10 Energy Platform Firmware May 22, 2025 Nov 8, 2019 N/A· v4 4.6 MEDIUM· v3 2.1 LOW· v2 In Medtronic Valleylab FT10 Energy Platform (VLFT10GEN) version 2.1.0 and lower and version 2.0.3 and lower, and Valleylab LS10 Energy Platform (VLLS10GEN—not available in the United States) version 1.20.2 and lower, the...Show more In Medtronic Valleylab FT10 Energy Platform (VLFT10GEN) version 2.1.0 and lower and version 2.0.3 and lower, and Valleylab LS10 Energy Platform (VLLS10GEN—not available in the United States) version 1.20.2 and lower, the RFID security mechanism does not apply read protection, allowing for full read access of the RFID security mechanism data.Show less
CVE-2019-3425 1Zte 1Zxupn 9000e Firmware Nov 21, 2024 Nov 8, 2019 N/A· v4 8.8 HIGH· v3 7.5 HIGH· v2 The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by vulnerability of permission and access control. An attacker could exploit this vulnerability to directly reset or change pas...Show more The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by vulnerability of permission and access control. An attacker could exploit this vulnerability to directly reset or change passwords of other accounts.Show less
CVE-2019-3866 1Redhat 1Openstack Mistral Nov 21, 2024 Nov 8, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access se...Show more An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information.Show less
CVE-2019-14824 3Debian FedoraprojectRedhat 3389 Directory Server Debian LinuxEnterprise Linux Nov 21, 2024 Nov 8, 2019 N/A· v4 6.5 MEDIUM· v3 3.5 LOW· v2 A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values. In some configurations, this could allow an authenticated attacker to view private attributes,...Show more A flaw was found in the 'deref' plugin of 389-ds-base where it could use the 'search' permission to display attribute values. In some configurations, this could allow an authenticated attacker to view private attributes, such as password hashes.Show less
CVE-2007-5743 2Debian Viewvc 2Debian Linux Viewvc Nov 21, 2024 Nov 7, 2019 N/A· v4 7.5 HIGH· v3 4.3 MEDIUM· v2 viewvc 1.0.3 allows improper access control to files in a repository when using the "forbidden" configuration option.
CVE-2019-5642 1Rapid7 1Metasploit Nov 21, 2024 Nov 6, 2019 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 Rapid7 Metasploit Pro version 4.16.0-2019081901 and prior suffers from an instance of CWE-732, wherein the unique server.key is written to the file system during installation with world-readable permissions. This can all...Show more Rapid7 Metasploit Pro version 4.16.0-2019081901 and prior suffers from an instance of CWE-732, wherein the unique server.key is written to the file system during installation with world-readable permissions. This can allow other users of the same system where Metasploit Pro is installed to intercept otherwise private communications to the Metasploit Pro web interface.Show less
CVE-2019-5068 4Canonical DebianMesa3d+1 more 4Debian Linux LeapMesa+1 more Nov 21, 2024 Nov 5, 2019 N/A· v4 4.4 MEDIUM· v3 3.6 LOW· v2 An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnera...Show more An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.Show less
CVE-2016-4983 3Dovecot OpensuseRedhat 4Dovecot Enterprise LinuxLeap+1 more Nov 21, 2024 Nov 5, 2019 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 A postinstall script in the dovecot rpm allows local users to read the contents of newly created SSL/TLS key files.
CVE-2019-10084 1Apache 1Impala Nov 21, 2024 Nov 5, 2019 N/A· v4 7.5 HIGH· v3 4.6 MEDIUM· v2 In Apache Impala 2.7.0 to 3.2.0, an authenticated user with access to the IDs of active Impala queries or sessions can interact with those sessions or queries via a specially-constructed request and thereby potentially b...Show more In Apache Impala 2.7.0 to 3.2.0, an authenticated user with access to the IDs of active Impala queries or sessions can interact with those sessions or queries via a specially-constructed request and thereby potentially bypass authorization and audit mechanisms. Session and query IDs are unique and random, but have not been documented or consistently treated as sensitive secrets. Therefore they may be exposed in logs or interfaces. They were also not generated with a cryptographically secure random number generator, so are vulnerable to random number generator attacks that predict future IDs based on past IDs. Impala deployments with Apache Sentry or Apache Ranger authorization enabled may be vulnerable to privilege escalation if an authenticated attacker is able to hijack a session or query from another authenticated user with privileges not assigned to the attacker. Impala deployments with audit logging enabled may be vulnerable to incorrect audit logging as a user could undertake actions that were logged under the name of a different authenticated user. Constructing an attack requires a high degree of technical sophistication and access to the Impala system as an authenticated user.Show less
CVE-2013-4367 1Ovirt 1Ovirt Engine Nov 21, 2024 Nov 1, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 ovirt-engine 3.2 running on Linux kernel 3.1 and newer creates certain files world-writeable due to an upstream kernel change which impacted how python's os.chmod() works when passed a mode of '-1'.

Previous 1...575859...83 Next