Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVEs (1,663)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-44120 1Siemens 1Spectrum Power 7 Nov 21, 2024 Jan 9, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q4). The affected product's sudo configuration permits the local administrative account to execute several entries as root user. This could allow...Show more A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q4). The affected product's sudo configuration permits the local administrative account to execute several entries as root user. This could allow an authenticated local attacker to inject arbitrary code and gain root access.Show less
CVE-2023-41776 1Zte 1Zxcloud Irai Jan 28, 2025 Jan 3, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 There is a local privilege escalation vulnerability of ZTE's ZXCLOUD iRAI.Attackers with regular user privileges can create a fake process, and to escalate local privileges.
CVE-2023-7055 1Phpgurukul 1Online Notes Sharing System Nov 21, 2024 Dec 22, 2023 N/A· v4 5.4 MEDIUM· v3 4.0 MEDIUM· v2 A vulnerability classified as problematic has been found in PHPGurukul Online Notes Sharing System 1.0. Affected is an unknown function of the file /user/profile.php of the component Contact Information Handler. The mani...Show more A vulnerability classified as problematic has been found in PHPGurukul Online Notes Sharing System 1.0. Affected is an unknown function of the file /user/profile.php of the component Contact Information Handler. The manipulation of the argument mobilenumber leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-248742 is the identifier assigned to this vulnerability.Show less
CVE-2023-46142 1Phoenixcontact 9Axc F 1152 Firmware Axc F 2152 FirmwareAxc F 3152 Firmware+6 more Nov 21, 2024 Dec 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A incorrect permission assignment for critical resource vulnerability in PLCnext products allows an remote attacker with low privileges to gain full access on the affected devices.
CVE-2023-46141 1Phoenixcontact 18Automationworx Software Suite Axc 1050 FirmwareAxc 1050 Xc Firmware+15 more Nov 21, 2024 Dec 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products of the PHOENIX CONTACT classic line allow an remote unauthenticated attacker to gain full access of the affected device.
CVE-2023-0757 1Phoenixcontact 2Multiprog Proconos Eclr Nov 21, 2024 Dec 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Incorrect Permission Assignment for Critical Resource vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to upload arbitrary malicious code and gain...Show more Incorrect Permission Assignment for Critical Resource vulnerability in PHOENIX CONTACT MULTIPROG, PHOENIX CONTACT ProConOS eCLR (SDK) allows an unauthenticated remote attacker to upload arbitrary malicious code and gain full access on the affected device.Show less
CVE-2023-25648 1Zte 1Zxcloud Irai Jan 28, 2025 Dec 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 There is a weak folder permission vulnerability in ZTE's ZXCLOUD iRAI product. Due to weak folder permission, an attacker with ordinary user privileges could construct a fake DLL to execute command to escalate local pri...Show more There is a weak folder permission vulnerability in ZTE's ZXCLOUD iRAI product. Due to weak folder permission, an attacker with ordinary user privileges could construct a fake DLL to execute command to escalate local privileges. Show less
CVE-2023-6593 1Devolutions 1Remote Desktop Manager Nov 21, 2024 Dec 12, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Client side permission bypass in Devolutions Remote Desktop Manager 2023.3.4.0 and earlier on iOS allows an attacker that has access to the application to execute entries in a SQL data source without restriction.
CVE-2023-49580 1Sap 1Graphical User Interface Nov 21, 2024 Dec 12, 2023 N/A· v4 7.3 HIGH· v3 N/A· v2 SAP GUI for Windows and SAP GUI for Java - versions SAP_BASIS 755, SAP_BASIS 756, SAP_BASIS 757, SAP_BASIS 758, allow an unauthenticated attacker to access information which would otherwise be restricted and confidential...Show more SAP GUI for Windows and SAP GUI for Java - versions SAP_BASIS 755, SAP_BASIS 756, SAP_BASIS 757, SAP_BASIS 758, allow an unauthenticated attacker to access information which would otherwise be restricted and confidential. In addition, this vulnerability allows the unauthenticated attacker to create Layout configurations of the ABAP List Viewer and with this causing a mild impact on integrity and availability, e.g. also increasing the response times of the AS ABAP.Show less
CVE-2023-49578 1Sap 1Cloud Connector Nov 21, 2024 Dec 12, 2023 N/A· v4 3.5 LOW· v3 N/A· v2 SAP Cloud Connector - version 2.0, allows an authenticated user with low privilege to perform Denial of service attack from adjacent UI by sending a malicious request which leads to low impact on the availability and no...Show more SAP Cloud Connector - version 2.0, allows an authenticated user with low privilege to perform Denial of service attack from adjacent UI by sending a malicious request which leads to low impact on the availability and no impact on confidentiality or Integrity of the application.Show less
CVE-2023-42924 1Apple 1Macos Nov 4, 2025 Dec 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.2, macOS Ventura 13.6.3. An app may be able to access sensitive user data.
CVE-2023-50446 1Mullvad 1Mullvad Vpn Nov 21, 2024 Dec 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in Mullvad VPN Windows app before 2023.6-beta1. Insufficient permissions on a directory allow any local unprivileged user to escalate privileges to SYSTEM.
CVE-2023-49797 1Pyinstaller 1Pyinstaller Nov 21, 2024 Dec 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 PyInstaller bundles a Python application and all its dependencies into a single package. A PyInstaller built application, elevated as a privileged process, may be tricked by an unprivileged attacker into deleting files t...Show more PyInstaller bundles a Python application and all its dependencies into a single package. A PyInstaller built application, elevated as a privileged process, may be tricked by an unprivileged attacker into deleting files the unprivileged user does not otherwise have access to. A user is affected if all the following are satisfied: 1. The user runs an application containing either `matplotlib` or `win32com`. 2. The application is ran as administrator (or at least a user with higher privileges than the attacker). 3. The user's temporary directory is not locked to that specific user (most likely due to `TMP`/`TEMP` environment variables pointing to an unprotected, arbitrary, non default location). Either: A. The attacker is able to very carefully time the replacement of a temporary file with a symlink. This switch must occur exactly between `shutil.rmtree()`'s builtin symlink check and the deletion itself B: The application was built with Python 3.7.x or earlier which has no protection against Directory Junctions links. The vulnerability has been addressed in PR #7827 which corresponds to `pyinstaller >= 5.13.1`. Users are advised to upgrade. There are no known workarounds for this vulnerability.Show less
CVE-2023-40302 1Netscout 1Ngeniuspulse Nov 21, 2024 Dec 7, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 NETSCOUT nGeniusPULSE 3.8 has Weak File Permissions Vulnerability
CVE-2023-49946 1Forgejo 1Forgejo Nov 21, 2024 Dec 3, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 In Forgejo before 1.20.5-1, certain endpoints do not check whether an object belongs to a repository for which permissions are being checked. This allows remote attackers to read private issues, read private pull request...Show more In Forgejo before 1.20.5-1, certain endpoints do not check whether an object belongs to a repository for which permissions are being checked. This allows remote attackers to read private issues, read private pull requests, delete issues, and perform other unauthorized actions.Show less
CVE-2023-29065 1Bd 1Facschorus Nov 21, 2024 Nov 28, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The FACSChorus software database can be accessed directly with the privileges of the currently logged-in user. A threat actor with physical access could potentially gain credentials, which could be used to alter or destr...Show more The FACSChorus software database can be accessed directly with the privileges of the currently logged-in user. A threat actor with physical access could potentially gain credentials, which could be used to alter or destroy data stored in the database.Show less
CVE-2023-5651 1Thimpress 1Wp Hotel Booking Nov 21, 2024 Nov 20, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 The WP Hotel Booking WordPress plugin before 2.0.8 does not have authorisation and CSRF checks, as well as does not ensure that the package to be deleted is a package, allowing any authenticated users, such as subscriber...Show more The WP Hotel Booking WordPress plugin before 2.0.8 does not have authorisation and CSRF checks, as well as does not ensure that the package to be deleted is a package, allowing any authenticated users, such as subscriber to delete arbitrary postsShow less
CVE-2023-6179 1Honeywell 1Prowatch Nov 21, 2024 Nov 17, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Honeywell ProWatch, 4.5, including all Service Pack versions, contain a Vulnerability in Application Server's executable folder(s). A(n) attacker could potentially exploit this vulnerability, leading to a standard user t...Show more Honeywell ProWatch, 4.5, including all Service Pack versions, contain a Vulnerability in Application Server's executable folder(s). A(n) attacker could potentially exploit this vulnerability, leading to a standard user to have arbitrary system code execution. Honeywell recommends updating to the most recent version of this product, service or offering (Pro-watch 6.0.2, 6.0, 5.5.2,5.0.5). Show less
CVE-2023-48087 1Xuxueli 1Xxl Job Nov 21, 2024 Nov 15, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 xxl-job-admin 2.4.0 is vulnerable to Insecure Permissions via /xxl-job-admin/joblog/clearLog and /xxl-job-admin/joblog/logDetailCat.
CVE-2023-39230 1Intel 1Rapid Storage Technology Nov 21, 2024 Nov 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Insecure inherited permissions in some Intel Rapid Storage Technology software before version 16.8.5.1014.9 may allow an authenticated user to potentially enable escalation of privilege via local access.

Previous 1...232425...84 Next