Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVEs (1,663)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-25250 1Trendmicro 2Apex One Officescan Nov 21, 2024 Apr 13, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local attacker to escalate privileges on affected installations....Show more An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.Show less
CVE-2020-26155 1Utimaco 6Block Safe Firmware Cryptoserver Cp5 FirmwareCryptoserver Cp5 Vs Nfd Firmware+3 more Nov 21, 2024 Mar 18, 2021 N/A· v4 7.8 HIGH· v3 4.4 MEDIUM· v2 Multiple files and folders in Utimaco SecurityServer 4.20.0.4 and 4.31.1.0. are installed with Read/Write permissions for authenticated users, which allows for binaries to be manipulated by non-administrator users. Addit...Show more Multiple files and folders in Utimaco SecurityServer 4.20.0.4 and 4.31.1.0. are installed with Read/Write permissions for authenticated users, which allows for binaries to be manipulated by non-administrator users. Additionally, entries are made to the PATH environment variable which, in conjunction with these weak permissions, could enable an attacker to perform a DLL hijacking attack.Show less
CVE-2020-24263 1Portainer 1Portainer Nov 21, 2024 Mar 16, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Portainer 1.24.1 and earlier is affected by an insecure permissions vulnerability that may lead to remote arbitrary code execution. A non-admin user is allowed to spawn new containers with critical capabilities such as S...Show more Portainer 1.24.1 and earlier is affected by an insecure permissions vulnerability that may lead to remote arbitrary code execution. A non-admin user is allowed to spawn new containers with critical capabilities such as SYS_MODULE, which can be used to take over the Docker host.Show less
CVE-2021-28374 1Debian 2Courier Authlib Debian Linux Nov 21, 2024 Mar 15, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a /run/courier/authdaemon directory with weak permissions, allowing an attacker to read user information. This may include a c...Show more The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a /run/courier/authdaemon directory with weak permissions, allowing an attacker to read user information. This may include a cleartext password in some configurations. In general, it includes the user's existence, uid and gids, home and/or Maildir directory, quota, and some type of password information (such as a hash).Show less
CVE-2021-27070 1Microsoft 2Windows 10 Windows Server 2016 Nov 21, 2024 Mar 11, 2021 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Windows 10 Update Assistant Elevation of Privilege Vulnerability
CVE-2021-21364 1Smartbear 1Swagger Codegen Nov 21, 2024 Mar 11, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger definition. In swagger-co...Show more swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger definition. In swagger-codegen before version 2.4.19, on Unix-Like systems, the system temporary directory is shared between all local users. When files/directories are created, the default `umask` settings for the process are respected. As a result, by default, most processes/apis will create files/directories with the permissions `-rw-r--r--` and `drwxr-xr-x` respectively, unless an API that explicitly sets safe file permissions is used. Because this vulnerability impacts generated code, the generated code will remain vulnerable until fixed manually! This vulnerability is fixed in version 2.4.19. Note this is a distinct vulnerability from CVE-2021-21363.Show less
CVE-2021-0372 1Google 1Android Nov 21, 2024 Mar 10, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In getMediaOutputSliceAction of RemoteMediaSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User in...Show more In getMediaOutputSliceAction of RemoteMediaSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-174047735Show less
CVE-2021-21177 3Debian FedoraprojectGoogle 3Chrome Debian LinuxFedora Nov 21, 2024 Mar 9, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Insufficient policy enforcement in Autofill in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
CVE-2019-18243 1Ge 1Ifix Nov 21, 2024 Feb 18, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 HMI/SCADA iFIX (Versions 6.1 and prior) allows a local authenticated user to modify system-wide iFIX configurations through the registry. This may allow privilege escalation.
CVE-2019-18255 1Ge 1Ifix Nov 21, 2024 Feb 18, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 HMI/SCADA iFIX (Versions 6.1 and prior) allows a local authenticated user to modify system-wide iFIX configurations through section objects. This may allow privilege escalation.
CVE-2021-0109 1Intel 1Compute Stick Stk1a32sc Firmware Nov 21, 2024 Feb 17, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Insecure inherited permissions for the Intel(R) SOC driver package for STK1A32SC before version 604 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2020-8029 1Suse 1Caas Platform Nov 21, 2024 Feb 11, 2021 N/A· v4 4.0 MEDIUM· v3 2.1 LOW· v2 A Incorrect Permission Assignment for Critical Resource vulnerability in skuba of SUSE CaaS Platform 4.5 allows local attackers to gain access to the kublet key. This issue affects: SUSE CaaS Platform 4.5 skuba versions...Show more A Incorrect Permission Assignment for Critical Resource vulnerability in skuba of SUSE CaaS Platform 4.5 allows local attackers to gain access to the kublet key. This issue affects: SUSE CaaS Platform 4.5 skuba versions prior to https://github.com/SUSE/skuba/pull/1416.Show less
CVE-2021-0336 1Google 1Android Nov 21, 2024 Feb 10, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In onReceive of BluetoothPermissionRequest.java, there is a possible permissions bypass due to a mutable PendingIntent. This could lead to local escalation of privilege that bypasses a permission check, with User executi...Show more In onReceive of BluetoothPermissionRequest.java, there is a possible permissions bypass due to a mutable PendingIntent. This could lead to local escalation of privilege that bypasses a permission check, with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-158219161Show less
CVE-2021-0334 1Google 1Android Nov 21, 2024 Feb 10, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In onTargetSelected of ResolverActivity.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. This could lead to local escalation of privilege with User execution...Show more In onTargetSelected of ResolverActivity.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-163358811Show less
CVE-2021-23874 1Mcafee 1Total Protection Nov 3, 2025 Feb 10, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and execute arbitrary code bypassing MTP self-defense.
CVE-2020-26196 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Feb 9, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Dell EMC PowerScale OneFS versions 8.1.0-9.1.0 contain a Backup/Restore Privilege implementation issue. A user with the BackupAdmin role may potentially exploit this vulnerability resulting in the ability to write data o...Show more Dell EMC PowerScale OneFS versions 8.1.0-9.1.0 contain a Backup/Restore Privilege implementation issue. A user with the BackupAdmin role may potentially exploit this vulnerability resulting in the ability to write data outside of the intended file system location.Show less
CVE-2020-26194 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Feb 9, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability. This may allow a non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SS...Show more Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability. This may allow a non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to exploit the vulnerability, leading to compromised cryptographic operations. Note: no non-admin users or roles have these privileges by default.Show less
CVE-2020-10553 1Psyprax 1Psyprax Nov 21, 2024 Feb 5, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\Psyprax32\PPScreen.ini contains a hash for the lockscreen (aka screensaver) of the application. If that entry is removed, the lockscreen is no longe...Show more An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\Psyprax32\PPScreen.ini contains a hash for the lockscreen (aka screensaver) of the application. If that entry is removed, the lockscreen is no longer displayed and the app is no longer locked. All local users are able to modify that file.Show less
CVE-2021-25276 1Solarwinds 1Serv U Nov 21, 2024 Feb 3, 2021 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 In SolarWinds Serv-U before 15.2.2 Hotfix 1, there is a directory containing user profile files (that include users' password hashes) that is world readable and writable. An unprivileged Windows user (having access to th...Show more In SolarWinds Serv-U before 15.2.2 Hotfix 1, there is a directory containing user profile files (that include users' password hashes) that is world readable and writable. An unprivileged Windows user (having access to the server's filesystem) can add an FTP user by copying a valid profile file to this directory. For example, if this profile sets up a user with a C:\ home directory, then the attacker obtains access to read or replace arbitrary files with LocalSystem privileges.Show less
CVE-2021-3165 1Missionlabs 1Smartagent Nov 21, 2024 Jan 26, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 SmartAgent 3.1.0 allows a ViewOnly attacker to create a SuperUser account via the /#/CampaignManager/users URI.

Previous 1...454647...84 Next