Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVEs (1,663)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-41974 - - Aug 27, 2025 Nov 18, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 A low privileged remote attacker may modify the BACNet service properties due to incorrect permission assignment for critical resources which may lead to a DoS limited to BACNet communication.
CVE-2024-41970 - - Aug 27, 2025 Nov 18, 2024 N/A· v4 5.7 MEDIUM· v3 N/A· v2 A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect permission assignment for critical resources.
CVE-2024-36294 1Intel 1Driver & Support Assistant Feb 4, 2025 Nov 13, 2024 5.4 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-36276 1Intel 1Computing Improvement Program Feb 4, 2025 Nov 13, 2024 5.4 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-39709 1Ivanti 2Connect Secure Policy Secure Jul 16, 2025 Nov 13, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Incorrect file permissions in Ivanti Connect Secure before version 22.6R2 (Not Applicable to 9.1Rx) and Ivanti Policy Secure before version 22.7R1 (Not Applicable to 9.1Rx) allow a local authenticated attacker to escalat...Show more Incorrect file permissions in Ivanti Connect Secure before version 22.6R2 (Not Applicable to 9.1Rx) and Ivanti Policy Secure before version 22.7R1 (Not Applicable to 9.1Rx) allow a local authenticated attacker to escalate their privileges.Show less
CVE-2024-9842 1Ivanti 1Secure Access Client Jan 17, 2025 Nov 12, 2024 N/A· v4 3.3 LOW· v3 N/A· v2 Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local authenticated attacker to create arbitrary folders.
CVE-2024-47808 1Siemens 1Sinec Nms Nov 13, 2024 Nov 12, 2024 8.3 HIGH· v4 6.5 MEDIUM· v3 N/A· v2 A vulnerability has been identified in SINEC NMS (All versions < V3.0 SP1). The affected application contains a database function, that does not properly restrict the permissions of users to write to the filesystem of th...Show more A vulnerability has been identified in SINEC NMS (All versions < V3.0 SP1). The affected application contains a database function, that does not properly restrict the permissions of users to write to the filesystem of the host system. This could allow an authenticated medium-privileged attacker to write arbitrary content to any location in the filesystem of the host system.Show less
CVE-2024-47783 1Siemens 1Siport Nov 13, 2024 Nov 12, 2024 8.5 HIGH· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in SIPORT (All versions < V3.4.0). The affected application improperly assigns file permissions to installation folders. This could allow a local attacker with an unprivileged accou...Show more A vulnerability has been identified in SIPORT (All versions < V3.4.0). The affected application improperly assigns file permissions to installation folders. This could allow a local attacker with an unprivileged account to override or modify the service executables and subsequently gain elevated privileges.Show less
CVE-2024-50590 - - Nov 3, 2025 Nov 8, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Attackers with local access to the medical office computer can escalate their Windows user privileges to "NT AUTHORITY\SYSTEM" by overwriting one of two Elefant service binaries with weak permissions. The default insta...Show more Attackers with local access to the medical office computer can escalate their Windows user privileges to "NT AUTHORITY\SYSTEM" by overwriting one of two Elefant service binaries with weak permissions. The default installation directory of Elefant is "C:\Elefant1" which is writable for all users. In addition, the Elefant installer registers two Firebird database services which are running as “NT AUTHORITY\SYSTEM”. Path: C:\Elefant1\Firebird_2\bin\fbserver.exe Path: C:\Elefant1\Firebird_2\bin\fbguard.exe Both service binaries are user writable. This means that a local attacker can rename one of the service binaries, replace the service executable with a new executable, and then restart the system. Once the system has rebooted, the new service binary is executed as "NT AUTHORITY\SYSTEM".Show less
CVE-2024-10526 - - Nov 8, 2024 Nov 7, 2024 8.6 HIGH· v4 N/A· v3 N/A· v2 Rapid7 Velociraptor MSI Installer versions below 0.73.3 suffer from a vulnerability whereby it creates the installation directory with WRITE_DACL permission to the BUILTIN\\Users group. This allows local users who are no...Show more Rapid7 Velociraptor MSI Installer versions below 0.73.3 suffer from a vulnerability whereby it creates the installation directory with WRITE_DACL permission to the BUILTIN\\Users group. This allows local users who are not administrators to grant themselves the Full Control permission on Velociraptor's files. By modifying Velociraptor's files, local users can subvert the binary and cause the Velociraptor service to execute arbitrary code as the SYSTEM user, or to replace the Velociraptor binary completely. This issue is fixed in version 0.73.3.Show less
CVE-2024-45164 1Akamai 1Secure Internet Access Enterprise Threatavert Nov 6, 2024 Nov 4, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization Services) before the latest 19.2.0 patch and Apps Portal before 19.2.0.3 or 19.2.0.20240814, has incorrect authorization co...Show more Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization Services) before the latest 19.2.0 patch and Apps Portal before 19.2.0.3 or 19.2.0.20240814, has incorrect authorization controls for the Admin functionality on the ThreatAvert Policy page. An authenticated user can navigate directly to the /#app/intelligence/threatAvertPolicies URI and disable policy enforcement.Show less
CVE-2024-10228 1Hashicorp 1Vagrant Vmware Utility Nov 7, 2024 Oct 29, 2024 N/A· v4 3.3 LOW· v3 N/A· v2 The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path that could be modified by an unprivileged user, introducing potential for unauthorized file system writes. This vulnerabil...Show more The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path that could be modified by an unprivileged user, introducing potential for unauthorized file system writes. This vulnerability, CVE-2024-10228, was fixed in Vagrant VMWare Utility 1.0.23Show less
CVE-2024-0128 - - Oct 28, 2024 Oct 26, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager that allows a user of the guest OS to access global resources. A successful exploit of this vulnerability might lead to information disclosure, dat...Show more NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager that allows a user of the guest OS to access global resources. A successful exploit of this vulnerability might lead to information disclosure, data tampering, and escalation of privileges.Show less
CVE-2022-30354 1Ovaledge 1Ovaledge Apr 23, 2025 Oct 25, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET request to /user/getUserWithTeam. Authentication is required. The information disclosed is associated with all registered user...Show more OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET request to /user/getUserWithTeam. Authentication is required. The information disclosed is associated with all registered user ID numbers.Show less
CVE-2024-46897 1Exceedone 1Exment Oct 22, 2024 Oct 18, 2024 N/A· v4 3.8 LOW· v3 N/A· v2 Incorrect permission assignment for critical resource issue exists in Exment v6.1.4 and earlier and Exment v5.0.11 and earlier. A logged-in user with the permission of table management may obtain and/or alter the informa...Show more Incorrect permission assignment for critical resource issue exists in Exment v6.1.4 and earlier and Exment v5.0.11 and earlier. A logged-in user with the permission of table management may obtain and/or alter the information of the unauthorized table.Show less
CVE-2023-6729 - - Oct 18, 2024 Oct 17, 2024 N/A· v4 7.3 HIGH· v3 N/A· v2 Nokia SR OS routers allow read-write access to the entire file system via SFTP or SCP for users configured with "access console." Consequently, a low privilege authenticated user with "access console" can read or replace...Show more Nokia SR OS routers allow read-write access to the entire file system via SFTP or SCP for users configured with "access console." Consequently, a low privilege authenticated user with "access console" can read or replace the router configuration file as well as other files stored in the Compact Flash or SD card without using CLI commands. This type of attack can lead to a compromise or denial of service of the router after the system is rebooted.Show less
CVE-2024-22029 - - Aug 26, 2025 Oct 16, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root
CVE-2024-10018 - - Oct 16, 2024 Oct 16, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper permission control in the mobile application (com.transsion.aivoiceassistant) can lead to the launch of any unexported component.
CVE-2024-44729 - - Oct 16, 2024 Oct 11, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Incorrect access control in the component app/src/server.js of Mirotalk before commit 9de226 allows unauthenticated attackers without presenter privileges to arbitrarily eject users from a meeting.
CVE-2024-47833 1Avaiga 1Taipy Oct 16, 2024 Oct 9, 2024 6.3 MEDIUM· v4 6.5 MEDIUM· v3 N/A· v2 Taipy is an open-source Python library for easy, end-to-end application development for data scientists and machine learning engineers. In affected versions session cookies are served without Secure and HTTPOnly flags. T...Show more Taipy is an open-source Python library for easy, end-to-end application development for data scientists and machine learning engineers. In affected versions session cookies are served without Secure and HTTPOnly flags. This issue has been addressed in release version 4.0.0 and all users are advised to upgrade. There are no known workarounds for this vulnerability.Show less

Previous 1...171819...84 Next