Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVEs (1,663)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-24886 1Nextcloud 1Nextcloud Nov 21, 2024 Apr 27, 2022 N/A· v4 3.8 LOW· v3 2.1 LOW· v2 Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. In versions prior to 3.19.0, any application with notification permission can access contacts if Nextcloud has access to Con...Show more Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. In versions prior to 3.19.0, any application with notification permission can access contacts if Nextcloud has access to Contacts without applying for the Contacts permission itself. Version 3.19.0 contains a fix for this issue. There are currently no known workarounds.Show less
CVE-2021-23055 1F5 1Nginx Ingress Controller Nov 21, 2024 Apr 21, 2022 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 On version 2.x before 2.0.3 and 1.x before 1.12.3, the command line restriction that controls snippet use with NGINX Ingress Controller does not apply to Ingress objects. Note: Software versions which have reached End of...Show more On version 2.x before 2.0.3 and 1.x before 1.12.3, the command line restriction that controls snippet use with NGINX Ingress Controller does not apply to Ingress objects. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.Show less
CVE-2022-24872 1Shopware 1Shopware Nov 21, 2024 Apr 20, 2022 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 Shopware is an open commerce platform based on Symfony Framework and Vue. Permissions set to sales channel context by admin-api are still usable within normal user session. Users are advised to update to the current vers...Show more Shopware is an open commerce platform based on Symfony Framework and Vue. Permissions set to sales channel context by admin-api are still usable within normal user session. Users are advised to update to the current version 6.4.10.1. For older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. There are no known workarounds for this issue.Show less
CVE-2021-38483 1Fanuc 1Roboguide Nov 21, 2024 Apr 20, 2022 N/A· v4 5.7 MEDIUM· v3 3.3 LOW· v2 The affected product is vulnerable to misconfigured binaries, allowing users on the target PC with SYSTEM level privileges access to overwrite the binary and modify files to gain privilege escalation.
CVE-2022-29527 1Amazon 1Amazon Ssm Agent Nov 21, 2024 Apr 20, 2022 N/A· v4 7.0 HIGH· v3 6.9 MEDIUM· v2 Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root. This occurs in certain situations involving a race c...Show more Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root. This occurs in certain situations involving a race condition.Show less
CVE-2022-22960 1Vmware 5Cloud Foundation Identity ManagerVrealize Automation+2 more Oct 30, 2025 Apr 13, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts. A malicious actor with local access can escalate privileg...Show more VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts. A malicious actor with local access can escalate privileges to 'root'.Show less
CVE-2022-23448 1Siemens 2Simatic Energy Manager Basic Simatic Energy Manager Pro Nov 21, 2024 Apr 12, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A vulnerability has been identified in SIMATIC Energy Manager Basic (All versions < V7.3 Update 1), SIMATIC Energy Manager PRO (All versions < V7.3 Update 1). Affected applications improperly assign permissions to critic...Show more A vulnerability has been identified in SIMATIC Energy Manager Basic (All versions < V7.3 Update 1), SIMATIC Energy Manager PRO (All versions < V7.3 Update 1). Affected applications improperly assign permissions to critical directories and files used by the application processes. This could allow a local unprivileged attacker to achieve code execution with ADMINISTRATOR or even NT AUTHORITY/SYSTEM privileges.Show less
CVE-2022-1316 1Zerotier 1Zerotierone Feb 24, 2026 Apr 11, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Incorrect Permission Assignment for Critical Resource in GitHub repository zerotier/zerotierone prior to 1.8.8. Local Privilege Escalation
CVE-2022-0556 1Zyxel 1Zyxel Ap Configurator Nov 21, 2024 Apr 11, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A local privilege escalation vulnerability caused by incorrect permission assignment in some directories of the Zyxel AP Configurator (ZAC) version 1.1.4, which could allow an attacker to execute arbitrary code as a loca...Show more A local privilege escalation vulnerability caused by incorrect permission assignment in some directories of the Zyxel AP Configurator (ZAC) version 1.1.4, which could allow an attacker to execute arbitrary code as a local administrator.Show less
CVE-2021-36290 1Dell 1Emc Unity Operating Environment Nov 21, 2024 Apr 8, 2022 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Dell VNX2 for File version 8.1.21.266 and earlier, contain a privilege escalation vulnerability. A local malicious admin may potentially exploit vulnerability and gain privileges.
CVE-2022-22516 1Codesys 4Control Rte Sl Control Rte Sl (for Beckhoff Cx)Control Win Sl+1 more Nov 21, 2024 Apr 7, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The SysDrv3S driver in the CODESYS Control runtime system on Microsoft Windows allows any system user to read and write within restricted memory space.
CVE-2022-26250 1Synametrics 1Synaman Nov 21, 2024 Apr 6, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Synaman v5.1 and below was discovered to contain weak file permissions which allows authenticated attackers to escalate privileges.
CVE-2022-26281 1Bigantsoft 1Bigant Server Nov 21, 2024 Apr 5, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 BigAnt Server v5.6.06 was discovered to contain an incorrect access control issue.
CVE-2022-23869 1Ruoyi 1Ruoyi Nov 21, 2024 Mar 30, 2022 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 In RuoYi v4.7.2 through the WebUI, user test1 does not have permission to reset the password of user test3, but the password of user test3 can be reset through the /system/user/resetPwd request.
CVE-2022-22941 1Saltstack 1Salt May 5, 2025 Mar 29, 2022 N/A· v4 8.8 HIGH· v3 6.0 MEDIUM· v2 An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. When configured as a Master-of-Masters, with a publisher_acl, if a user configured in the publisher_acl targets any minion connected to...Show more An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. When configured as a Master-of-Masters, with a publisher_acl, if a user configured in the publisher_acl targets any minion connected to the Syndic, the Salt Master incorrectly interpreted no valid targets as valid, allowing configured users to target any of the minions connected to the syndic with their configured commands. This requires a syndic master combined with publisher_acl configured on the Master-of-Masters, allowing users specified in the publisher_acl to bypass permissions, publishing authorized commands to any configured minion.Show less
CVE-2022-24769 4Debian FedoraprojectLinuxfoundation+1 more 4Debian Linux FedoraMoby+1 more Nov 21, 2024 Mar 24, 2022 N/A· v4 5.9 MEDIUM· v3 4.6 MEDIUM· v2 Moby is an open-source project created by Docker to enable and accelerate software containerization. A bug was found in Moby (Docker Engine) prior to version 20.10.14 where containers were incorrectly started with non-em...Show more Moby is an open-source project created by Docker to enable and accelerate software containerization. A bug was found in Moby (Docker Engine) prior to version 20.10.14 where containers were incorrectly started with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to elevate those capabilities to the permitted set during `execve(2)`. Normally, when executable programs have specified permitted file capabilities, otherwise unprivileged users and processes can execute those programs and gain the specified file capabilities up to the bounding set. Due to this bug, containers which included executable programs with inheritable file capabilities allowed otherwise unprivileged users and processes to additionally gain these inheritable file capabilities up to the container's bounding set. Containers which use Linux users and groups to perform privilege separation inside the container are most directly impacted. This bug did not affect the container security sandbox as the inheritable set never contained more capabilities than were included in the container's bounding set. This bug has been fixed in Moby (Docker Engine) 20.10.14. Running containers should be stopped, deleted, and recreated for the inheritable capabilities to be reset. This fix changes Moby (Docker Engine) behavior such that containers are started with a more typical Linux environment. As a workaround, the entry point of a container can be modified to use a utility like `capsh(1)` to drop inheritable capabilities prior to the primary process starting.Show less
CVE-2022-0652 1Sophos 1Unified Threat Management Nov 21, 2024 Mar 22, 2022 N/A· v4 7.8 HIGH· v3 2.1 LOW· v2 Confd log files contain local users', including root’s, SHA512crypt password hashes with insecure access permissions. This allows a local attacker to attempt off-line brute-force attacks against these password hashes in...Show more Confd log files contain local users', including root’s, SHA512crypt password hashes with insecure access permissions. This allows a local attacker to attempt off-line brute-force attacks against these password hashes in Sophos UTM before version 9.710.Show less
CVE-2022-24236 1Snapt 1Aria Nov 21, 2024 Mar 21, 2022 N/A· v4 3.5 LOW· v3 3.5 LOW· v2 An insecure permissions vulnerability in Snapt Aria v12.8 allows unauthenticated attackers to send e-mails from spoofed users' accounts.
CVE-2022-26247 1Teamwork Management System Project 1Teamwork Management System Nov 21, 2024 Mar 20, 2022 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 TMS v2.28.0 contains an insecure permissions vulnerability via the component /TMS/admin/user/Update2. This vulnerability allows attackers to modify the administrator account and password.
CVE-2022-26526 2Anaconda Conda 2Anaconda3 Miniconda3 Nov 21, 2024 Mar 17, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Anaconda Anaconda3 (Anaconda Distribution) through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under %PROGRAMDATA% and place that directory into the system PATH environment variable....Show more Anaconda Anaconda3 (Anaconda Distribution) through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under %PROGRAMDATA% and place that directory into the system PATH environment variable. Thus, for example, local users can gain privileges by placing a Trojan horse file into that directory. (This problem can only happen in a non-default installation. The person who installs the product must specify that it is being installed for all users. Also, the person who installs the product must specify that the system PATH should be changed.Show less

Previous 1...363738...84 Next