Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

CVEs (1,663)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-17522 1Apache 1Traffic Control Nov 21, 2024 Jan 26, 2021 N/A· v4 5.8 MEDIUM· v3 5.0 MEDIUM· v2 When ORT (now via atstccfg) generates ip_allow.config files in Apache Traffic Control 3.0.0 to 3.1.0 and 4.0.0 to 4.1.0, those files include permissions that allow bad actors to push arbitrary content into and remove arb...Show more When ORT (now via atstccfg) generates ip_allow.config files in Apache Traffic Control 3.0.0 to 3.1.0 and 4.0.0 to 4.1.0, those files include permissions that allow bad actors to push arbitrary content into and remove arbitrary content from CDN cache servers. Additionally, these permissions are potentially extended to IP addresses outside the desired range, resulting in them being granted to clients possibly outside the CDN arcitechture.Show less
CVE-2020-28482 1Fastify 1Fastify Csrf Nov 21, 2024 Jan 19, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 This affects the package fastify-csrf before 3.0.0. 1. The generated cookie used insecure defaults, and did not have the httpOnly flag on: cookieOpts: { path: '/', sameSite: true } 2. The CSRF token was available in the...Show more This affects the package fastify-csrf before 3.0.0. 1. The generated cookie used insecure defaults, and did not have the httpOnly flag on: cookieOpts: { path: '/', sameSite: true } 2. The CSRF token was available in the GET query parameterShow less
CVE-2021-22850 1Hgiga 1Oaklouds Portal Nov 21, 2024 Jan 19, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 HGiga EIP product lacks ineffective access control in certain pages that allow attackers to access database or perform privileged functions.
CVE-2021-1126 1Cisco 1Secure Firewall Management Center Nov 26, 2024 Jan 13, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A vulnerability in the storage of proxy server credentials of Cisco Firepower Management Center (FMC) could allow an authenticated, local attacker to view credentials for a configured proxy server. The vulnerability is d...Show more A vulnerability in the storage of proxy server credentials of Cisco Firepower Management Center (FMC) could allow an authenticated, local attacker to view credentials for a configured proxy server. The vulnerability is due to clear-text storage and weak permissions of related configuration files. An attacker could exploit this vulnerability by accessing the CLI of the affected software and viewing the contents of the affected files. A successful exploit could allow the attacker to view the credentials that are used to access the proxy server.Show less
CVE-2019-4702 1Ibm 1Security Guardium Data Encryption Aug 12, 2025 Jan 13, 2021 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 IBM Security Guardium Data Encryption (GDE) 3.0.0.2 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.
CVE-2021-0304 1Google 1Android Nov 21, 2024 Jan 11, 2021 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 In several functions of GlobalScreenshot.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure of the user's contacts with User execution privileges n...Show more In several functions of GlobalScreenshot.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure of the user's contacts with User execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-8.0, Android-8.1, Android-9; Android ID: A-162738636.Show less
CVE-2020-36154 1Pearson 1Vue Testing System Nov 21, 2024 Jan 4, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The Application Wrapper in Pearson VUE VTS Installer 2.3.1911 has Full Control permissions for Everyone in the "%SYSTEMDRIVE%\Pearson VUE" directory, which allows local users to obtain administrative privileges via a Tro...Show more The Application Wrapper in Pearson VUE VTS Installer 2.3.1911 has Full Control permissions for Everyone in the "%SYSTEMDRIVE%\Pearson VUE" directory, which allows local users to obtain administrative privileges via a Trojan horse application.Show less
CVE-2021-21494 1Mk Auth 1Mk Auth Nov 21, 2024 Jan 4, 2021 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 MK-AUTH through 19.01 K4.9 allows XSS via the admin/logs_ajax.php tipo parameter. An attacker can leverage this to read the centralmka2 (session token) cookie, which is not set to HTTPOnly.
CVE-2020-25507 13ds 1Teamwork Cloud Nov 21, 2024 Dec 28, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set...Show more An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set the system enviroment file with world writable permissions (0777 /etc/environment). Any local unprivileged user can execute arbitrary code simply by writing to /etc/environment, which will force all users, including root, to execute arbitrary code during the next login or reboot. In addition, the entire home directory of the twcloud user at /home/twcloud is recursively given world writable permissions. This allows any local unprivileged attacker to execute arbitrary code, as twcloud. This product was previous named Cameo Enterprise Data Warehouse (CEDW).Show less
CVE-2020-28169 2Debian Td Agent Builder Project 2Debian Linux Td Agent Builder Nov 21, 2024 Dec 24, 2020 N/A· v4 7.0 HIGH· v3 6.9 MEDIUM· v2 The td-agent-builder plugin before 2020-12-18 for Fluentd allows attackers to gain privileges because the bin directory is writable by a user account, but a file in bin is executed as NT AUTHORITY\SYSTEM.
CVE-2020-24578 1Dlink 1Dsl2888a Firmware Nov 21, 2024 Dec 22, 2020 N/A· v4 6.5 MEDIUM· v3 3.3 LOW· v2 An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. It has a misconfigured FTP service that allows a malicious network user to access system folders and download sensitive file...Show more An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. It has a misconfigured FTP service that allows a malicious network user to access system folders and download sensitive files (such as the password hash file).Show less
CVE-2018-15645 1Odoo 1Odoo Nov 21, 2024 Dec 22, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Improper access control in message routing in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier allows remote authenticated users to create arbitrary records via crafted payloads, which may allow privi...Show more Improper access control in message routing in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier allows remote authenticated users to create arbitrary records via crafted payloads, which may allow privilege escalation.Show less
CVE-2020-25011 1Kyland 1Kps2204 6 Port Managed Din Rail Programmable Serial Device Firmware Nov 21, 2024 Dec 17, 2020 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 A sensitive information disclosure vulnerability in Kyland KPS2204 6 Port Managed Din-Rail Programmable Serial Device Servers Software Version:R0002.P05 allows remote attackers to get username and password by request /cg...Show more A sensitive information disclosure vulnerability in Kyland KPS2204 6 Port Managed Din-Rail Programmable Serial Device Servers Software Version:R0002.P05 allows remote attackers to get username and password by request /cgi-bin/webadminget.cgi script via the browser.Show less
CVE-2019-14480 1Adremsoft 1Netcrunch Nov 21, 2024 Dec 16, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 AdRem NetCrunch 10.6.0.4587 has an Improper Session Handling vulnerability in the NetCrunch web client, which can lead to an authentication bypass or escalation of privileges.
CVE-2020-25191 1Ni 1Compactrio Firmware Nov 21, 2024 Dec 11, 2020 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Incorrect permissions are set by default for an API entry-point of a specific service, allowing a non-authenticated user to trigger a function that could reboot the CompactRIO (Driver versions prior to 20.5) remotely.
CVE-2020-8908 4Google NetappOracle+1 more 13Active Iq Unified Manager Commerce Guided SearchCommunications Cloud Native Core Network Repository Function+10 more Feb 23, 2026 Dec 10, 2020 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.F...Show more A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). By default, on unix-like systems, the created directory is world-readable (readable by an attacker with access to the system). The method in question has been marked @Deprecated in versions 30.0 and later and should not be used. For Android developers, we recommend choosing a temporary directory API provided by Android, such as context.getCacheDir(). For other Java developers, we recommend migrating to the Java 7 API java.nio.file.Files.createTempDirectory() which explicitly configures permissions of 700, or configuring the Java runtime's java.io.tmpdir system property to point to a location whose permissions are appropriately configured.Show less
CVE-2020-7337 1Mcafee 1Virusscan Enterprise Nov 21, 2024 Dec 9, 2020 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly int...Show more Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of the Code Integrity checks.Show less
CVE-2020-4625 1Ibm 1Cloud Pak For Security Nov 21, 2024 Nov 30, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 IBM Cloud Pak for Security 1.3.0.1(CP4S) could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensiti...Show more IBM Cloud Pak for Security 1.3.0.1(CP4S) could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie.Show less
CVE-2020-29074 3Debian FedoraprojectX11vnc Project 3Debian Linux FedoraX11vnc Nov 21, 2024 Nov 25, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 scan.c in x11vnc 0.9.16 uses IPC_CREAT\|0777 in shmget calls, which allows access by actors other than the current user.
CVE-2020-10762 1Redhat 1Gluster Block Nov 21, 2024 Nov 24, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An information-disclosure flaw was found in the way that gluster-block before 0.5.1 logs the output from gluster-block CLI operations. This includes recording passwords to the cmd_history.log file which is world-readable...Show more An information-disclosure flaw was found in the way that gluster-block before 0.5.1 logs the output from gluster-block CLI operations. This includes recording passwords to the cmd_history.log file which is world-readable. This flaw allows local users to obtain sensitive information by reading the log file. The highest threat from this vulnerability is to data confidentiality.Show less

Previous 1...464748...84 Next