Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVEs (1,663)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-27836 1Redhat 1Openshift Container Platform Nov 21, 2024 Aug 22, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A flaw was found in cluster-ingress-operator. A change to how the router-default service allows only certain IP source ranges could allow an attacker to access resources that would otherwise be restricted to specified IP...Show more A flaw was found in cluster-ingress-operator. A change to how the router-default service allows only certain IP source ranges could allow an attacker to access resources that would otherwise be restricted to specified IP ranges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability..Show less
CVE-2022-35167 1Prinitix 1Cloud Print Management Nov 21, 2024 Aug 19, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Printix Cloud Print Management v1.3.1149.0 for Windows was discovered to contain insecure permissions.
CVE-2022-22411 1Ibm 1Spectrum Scale Data Access Services Nov 21, 2024 Aug 10, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 IBM Spectrum Scale Data Access Services (DAS) 5.1.3.1 could allow an authenticated user to insert code which could allow the attacker to manipulate cluster resources due to excessive permissions. IBM X-Force ID: 223016.
CVE-2020-1754 1Moodle 1Moodle Nov 21, 2024 Aug 5, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, users viewing the grade history report without the 'access all groups' capability were not restricted to viewing grades of users within their own groups.
CVE-2022-36800 1Atlassian 1Jira Service Management Nov 21, 2024 Aug 3, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers without the "Browse Users" permission to view groups via an Information Disclosure vulnerability in the browsegroups.ac...Show more Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers without the "Browse Users" permission to view groups via an Information Disclosure vulnerability in the browsegroups.action endpoint. The affected versions are before version 4.22.2.Show less
CVE-2021-22648 1Ovarro 8Tbox Lt2 530 Firmware Tbox Lt2 532 FirmwareTbox Lt2 540 Firmware+5 more Apr 17, 2025 Jul 28, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Ovarro TBox proprietary Modbus file access functions allow attackers to read, alter, or delete the configuration file.
CVE-2022-34112 1Dataease 1Dataease Sep 24, 2025 Jul 22, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An access control issue in the component /api/plugin/uninstall Dataease v1.11.1 allows attackers to arbitrarily uninstall the plugin, a right normally reserved for the administrator.
CVE-2022-1655 1Redhat 1Openstack Nov 21, 2024 Jul 22, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An Incorrect Permission Assignment for Critical Resource flaw was found in Horizon on Red Hat OpenStack. Horizon session cookies are created without the HttpOnly flag despite HorizonSecureCookies being set to true in the...Show more An Incorrect Permission Assignment for Critical Resource flaw was found in Horizon on Red Hat OpenStack. Horizon session cookies are created without the HttpOnly flag despite HorizonSecureCookies being set to true in the environmental files, possibly leading to a loss of confidentiality and integrity.Show less
CVE-2022-34891 1Parallels 1Parallels Desktop Nov 21, 2024 Jul 18, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop Parallels Desktop 17.1.1. An attacker must first obtain the ability to execute low-privileged code on the ta...Show more This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop Parallels Desktop 17.1.1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the update machanism. The product sets incorrect permissions on sensitive files. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of root. Was ZDI-CAN-16395.Show less
CVE-2021-45492 1Sage 1Sage 300 Nov 21, 2024 Jul 14, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 In Sage 300 ERP (formerly accpac) through 6.8.x, the installer configures the C:\Sage\Sage300\Runtime directory to be the first entry in the system-wide PATH environment variable. However, this directory is writable by u...Show more In Sage 300 ERP (formerly accpac) through 6.8.x, the installer configures the C:\Sage\Sage300\Runtime directory to be the first entry in the system-wide PATH environment variable. However, this directory is writable by unprivileged users because the Sage installer fails to set explicit permissions and therefore inherits weak permissions from the C:\ folder. Because entries in the system-wide PATH variable are included in the search order for DLLs, an attacker could perform DLL search-order hijacking to escalate their privileges to SYSTEM. Furthermore, if the Global Search or Web Screens functionality is enabled, then privilege escalation is possible via the GlobalSearchService and Sage.CNA.WindowsService services, again via DLL search-order hijacking because unprivileged users would have modify permissions on the application directory. Note that while older versions of the software default to installing in %PROGRAMFILES(X86)% (which would allow the Sage folder to inherit strong permissions, making the installation not vulnerable), the official Sage 300 installation guides for those versions recommend installing in C:\Sage, which would make the installation vulnerable.Show less
CVE-2022-20234 1Google 1Android Nov 21, 2024 Jul 13, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Car Settings app, the NotificationAccessConfirmationActivity is exported. In NotificationAccessConfirmationActivity, it gets both 'mComponentName' and 'pkgTitle' from user.An unprivileged app can use a malicous mCompo...Show more In Car Settings app, the NotificationAccessConfirmationActivity is exported. In NotificationAccessConfirmationActivity, it gets both 'mComponentName' and 'pkgTitle' from user.An unprivileged app can use a malicous mComponentName with a benign pkgTitle (e.g. Settings app) to make users enable notification access permission for the malicious app. That is, users believe they enable the notification access permission for the Settings app, but actually they enable the notification access permission for the malicious app.Once the malicious app gets the notification access permission, it can read all notifications, including users' personal information.Product: AndroidVersions: Android-12LAndroid ID: A-225189301Show less
CVE-2022-20218 1Google 1Android Nov 21, 2024 Jul 13, 2022 N/A· v4 7.8 HIGH· v3 4.4 MEDIUM· v2 In PermissionController, there is a possible way to get and retain permissions without user's consent due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privil...Show more In PermissionController, there is a possible way to get and retain permissions without user's consent due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12 Android-12LAndroid ID: A-223907044Show less
CVE-2022-33695 1Google 1Android Nov 21, 2024 Jul 12, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Use of improper permission in InputManagerService prior to SMR Jul-2022 Release 1 allows unauthorized access to the service.
CVE-2021-38289 1Novastar 1Novaicare Apr 7, 2026 Jul 12, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 An issue has been discovered in Novastar-VNNOX-iCare Novaicare 7.16.0 that gives attacker privilege escalation and allows attackers to view corporate information and SMTP server details, delete users, view roles, and oth...Show more An issue has been discovered in Novastar-VNNOX-iCare Novaicare 7.16.0 that gives attacker privilege escalation and allows attackers to view corporate information and SMTP server details, delete users, view roles, and other unspecified impacts. NOTE: As of April 2026, the vendor has officially decommissioned the affected legacy endpoints and associated services. The vulnerability is mitigated as the functional logic is no longer operational and the URLs have been removed from production.Show less
CVE-2022-30929 1Mini Tmall Project 1Mini Tmall Nov 21, 2024 Jul 6, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Mini-Tmall v1.0 is vulnerable to Insecure Permissions via tomcat-embed-jasper.
CVE-2022-2227 1Gitlab 1Gitlab Nov 21, 2024 Jul 1, 2022 N/A· v4 4.3 MEDIUM· v3 3.5 LOW· v2 Improper access control in the runner jobs API in GitLab CE/EE affecting all versions prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 allows a previous maintainer of a project with a specific runner to a...Show more Improper access control in the runner jobs API in GitLab CE/EE affecting all versions prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 allows a previous maintainer of a project with a specific runner to access job and project meta data under certain conditionsShow less
CVE-2014-0068 1Redhat 1Openshift Origin Node Util Nov 21, 2024 Jun 30, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permission.
CVE-2022-23725 1Pingidentity 1Pingid Integration For Windows Login Nov 21, 2024 Jun 30, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 PingID Windows Login prior to 2.8 does not properly set permissions on the Windows Registry entries used to store sensitive API keys under some circumstances.
CVE-2022-34043 1Nomachine 1Nomachine Nov 21, 2024 Jun 29, 2022 N/A· v4 7.3 HIGH· v3 4.4 MEDIUM· v2 Incorrect permissions for the folder C:\ProgramData\NoMachine\var\uninstall of Nomachine v7.9.2 allows attackers to perform a DLL hijacking attack and execute arbitrary code.
CVE-2021-38879 1Ibm 1Jazz Team Server Nov 21, 2024 Jun 24, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability...Show more IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 209057.Show less

Previous 1...343536...84 Next