Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVEs (1,658)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-7821 1Mozilla 1Firefox Nov 21, 2024 Jun 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A vulnerability where WebExtensions can download and attempt to open a file of some non-executable file types. This can be triggered without specific user interaction for the file download and open actions. This could be...Show more A vulnerability where WebExtensions can download and attempt to open a file of some non-executable file types. This can be triggered without specific user interaction for the file download and open actions. This could be used to trigger known vulnerabilities in the programs that handle those document types. This vulnerability affects Firefox < 56.Show less
CVE-2017-5456 2Mozilla Redhat 7Enterprise Linux Enterprise Linux DesktopEnterprise Linux Server+4 more Nov 25, 2025 Jun 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A mechanism to bypass file system access protections in the sandbox using the file system request constructor through an IPC message. This allows for read and write access to the local file system. This vulnerability aff...Show more A mechanism to bypass file system access protections in the sandbox using the file system request constructor through an IPC message. This allows for read and write access to the local file system. This vulnerability affects Firefox ESR < 52.1 and Firefox < 53.Show less
CVE-2017-5426 1Mozilla 2Firefox Thunderbird Nov 21, 2024 Jun 11, 2018 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 On Linux, if the secure computing mode BPF (seccomp-bpf) filter is running when the Gecko Media Plugin sandbox is started, the sandbox fails to be applied and items that would run within the sandbox are run protected onl...Show more On Linux, if the secure computing mode BPF (seccomp-bpf) filter is running when the Gecko Media Plugin sandbox is started, the sandbox fails to be applied and items that would run within the sandbox are run protected only by the running filter which is typically weak compared to the sandbox. Note: this issue only affects Linux. Other operating systems are not affected. This vulnerability affects Firefox < 52 and Thunderbird < 52.Show less
CVE-2018-4251 1Apple 1Mac Os X Nov 21, 2024 Jun 8, 2018 N/A· v4 5.5 MEDIUM· v3 7.1 HIGH· v2 An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Firmware" component. It allows attackers to modify the EFI flash-memory region that a crafted app that has root...Show more An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Firmware" component. It allows attackers to modify the EFI flash-memory region that a crafted app that has root access.Show less
CVE-2018-4238 1Apple 1Iphone Os Nov 21, 2024 Jun 8, 2018 N/A· v4 2.4 LOW· v3 2.1 LOW· v2 An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and enable...Show more An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and enable Siri.Show less
CVE-2018-4220 1Apple 1Swift Nov 21, 2024 Jun 8, 2018 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 An issue was discovered in certain Apple products. Swift before 4.1.1 Security Update 2018-001 is affected. The issue involves the "Swift for Ubuntu" component. It allows attackers to execute arbitrary code in a privileg...Show more An issue was discovered in certain Apple products. Swift before 4.1.1 Security Update 2018-001 is affected. The issue involves the "Swift for Ubuntu" component. It allows attackers to execute arbitrary code in a privileged context because write and execute permissions are enabled during library loading.Show less
CVE-2012-0433 1Crowbar Project 1Crowbar Nov 21, 2024 Jun 8, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 The install-chef-suse.sh script shipped with crowbar before 2012-10-02 is creating files containing confidential data with insecure permissions, allowing local users to read confidential data.
CVE-2018-0352 1Cisco 1Wide Area Application Services Nov 21, 2024 Jun 7, 2018 N/A· v4 6.7 MEDIUM· v3 7.2 HIGH· v2 A vulnerability in the Disk Check Tool (disk-check.sh) for Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to elevate their privilege level to root. The attacker must hav...Show more A vulnerability in the Disk Check Tool (disk-check.sh) for Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to elevate their privilege level to root. The attacker must have valid user credentials with super user privileges (level 15) to log in to the device. The vulnerability is due to insufficient validation of script files executed in the context of the Disk Check Tool. An attacker could exploit this vulnerability by replacing one script file with a malicious script file while the affected tool is running. A successful exploit could allow the attacker to gain root-level privileges and take full control of the device. Cisco Bug IDs: CSCvi72673.Show less
CVE-2017-18285 1Burp Project 1Burp Nov 21, 2024 Jun 4, 2018 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 The Gentoo app-backup/burp package before 2.1.32 has incorrect group ownership of the /etc/burp directory, which might allow local users to obtain read and write access to arbitrary files by leveraging access to a certai...Show more The Gentoo app-backup/burp package before 2.1.32 has incorrect group ownership of the /etc/burp directory, which might allow local users to obtain read and write access to arbitrary files by leveraging access to a certain account for a burp-server.conf change.Show less
CVE-2017-18284 1Burp Project 1Burp Nov 21, 2024 Jun 4, 2018 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 The Gentoo app-backup/burp package before 2.1.32 sets the ownership of the PID file directory to the burp account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID fi...Show more The Gentoo app-backup/burp package before 2.1.32 sets the ownership of the PID file directory to the burp account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script sends a SIGKILL.Show less
CVE-2018-11194 1Quest 1Disk Backup Nov 21, 2024 Jun 2, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Quest DR Series Disk Backup software version before 4.0.3.1 allows privilege escalation (issue 6 of 6).
CVE-2018-11193 1Quest 1Disk Backup Nov 21, 2024 Jun 2, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Quest DR Series Disk Backup software version before 4.0.3.1 allows privilege escalation (issue 5 of 6).
CVE-2018-11192 1Quest 1Disk Backup Nov 21, 2024 Jun 2, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Quest DR Series Disk Backup software version before 4.0.3.1 allows privilege escalation (issue 4 of 6).
CVE-2018-11191 1Quest 1Disk Backup Nov 21, 2024 Jun 2, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Quest DR Series Disk Backup software version before 4.0.3.1 allows privilege escalation (issue 3 of 6).
CVE-2018-1370 1Ibm 1Security Guardium Big Data Intelligence Nov 21, 2024 May 29, 2018 N/A· v4 5.4 MEDIUM· v3 6.5 MEDIUM· v2 IBM Security Guardium Big Data Intelligence (SonarG) 3.1 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 137769.
CVE-2018-11334 1Windscribe 1Windscribe Nov 21, 2024 May 23, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Windscribe 1.81 creates a named pipe with a NULL DACL that allows Everyone users to gain privileges or cause a denial of service via \\.\pipe\WindscribeService.
CVE-2017-2612 1Jenkins 1Jenkins Nov 21, 2024 May 15, 2018 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 In Jenkins before versions 2.44, 2.32.2 low privilege users were able to override JDK download credentials (SECURITY-392), resulting in future builds possibly failing to download a JDK.
CVE-2018-1115 2Opensuse Postgresql 2Leap Postgresql Nov 21, 2024 May 10, 2018 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, a...Show more postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation.Show less
CVE-2017-4952 1Vmware 1Xenon Nov 21, 2024 May 2, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 VMware Xenon 1.x, prior to 1.5.4-CR7_1, 1.5.7_7, 1.5.4-CR6_2, 1.3.7-CR1_2, 1.1.0-CR0-3, 1.1.0-CR3_1,1.4.2-CR4_1, and 1.5.4_8, contains an authentication bypass vulnerability due to insufficient access controls for utilit...Show more VMware Xenon 1.x, prior to 1.5.4-CR7_1, 1.5.7_7, 1.5.4-CR6_2, 1.3.7-CR1_2, 1.1.0-CR0-3, 1.1.0-CR3_1,1.4.2-CR4_1, and 1.5.4_8, contains an authentication bypass vulnerability due to insufficient access controls for utility endpoints. Successful exploitation of this issue may result in information disclosure.Show less
CVE-2018-5516 1F5 17Big Ip Access Policy Manager Big Ip Advanced Firewall ManagerBig Ip Analytics+14 more Nov 21, 2024 May 2, 2018 N/A· v4 4.7 MEDIUM· v3 4.7 MEDIUM· v2 On F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.2, or 11.2.1-11.6.3.1, Enterprise Manager 3.1.1, BIG-IQ Centralized Management 5.0.0-5.4.0 or 4.6.0, BIG-IQ Cloud and Orchestration 1.0.0, or F5 iWorkflow 2.0.2-2.3.0, authentica...Show more On F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.2, or 11.2.1-11.6.3.1, Enterprise Manager 3.1.1, BIG-IQ Centralized Management 5.0.0-5.4.0 or 4.6.0, BIG-IQ Cloud and Orchestration 1.0.0, or F5 iWorkflow 2.0.2-2.3.0, authenticated users granted TMOS Shell (tmsh) access can access objects on the file system which would normally be disallowed by tmsh restrictions. This allows for authenticated, low privileged attackers to exfiltrate objects on the file system which should not be allowed.Show less

Previous 1...737475...83 Next