Vulnerabilities > Improper Preservation of Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-05 | CVE-2021-29971 | Improper Preservation of Permissions vulnerability in Mozilla Firefox If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespective of scheme or port - would be granted that permission. | 9.8 |
| 2021-08-04 | CVE-2021-32465 | Improper Preservation of Permissions vulnerability in Trendmicro Apex ONE and Officescan An incorrect permission preservation vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a remote user to perform an attack and bypass authentication on affected installations. | 8.8 |
| 2021-07-15 | CVE-2020-15496 | Improper Preservation of Permissions vulnerability in Acronis True Image Acronis True Image for Mac before 2021 Update 4 allowed local privilege escalation due to insecure folder permissions. | 7.8 |
| 2021-06-22 | CVE-2021-22382 | Improper Preservation of Permissions vulnerability in Huawei E3372 Firmware and E8372 Firmware Huawei LTE USB Dongle products have an improper permission assignment vulnerability. | 6.5 |
| 2021-06-10 | CVE-2021-21735 | Improper Preservation of Permissions vulnerability in ZTE Zxhn H168N Firmware A ZTE product has an information leak vulnerability. | 6.5 |
| 2021-06-09 | CVE-2021-0074 | Improper Preservation of Permissions vulnerability in Intel Computing Improvement Program Improper permissions in the installer for the Intel(R) Computing Improvement Program software before version 2.4.5982 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2021-06-09 | CVE-2020-27383 | Improper Preservation of Permissions vulnerability in Blizzard Battle.Net 1.27.1.12428 Battle.net.exe in Battle.Net 1.27.1.12428 suffers from an elevation of privileges vulnerability which can be used by an "Authenticated User" to modify the existing executable file with a binary of his choice. | 7.8 |
| 2021-06-01 | CVE-2021-3495 | Improper Preservation of Permissions vulnerability in multiple products An incorrect access control flaw was found in the kiali-operator in versions before 1.33.0 and before 1.24.7. | 8.8 |
| 2021-05-13 | CVE-2021-22137 | Improper Preservation of Permissions vulnerability in Elastic Elasticsearch In Elasticsearch versions before 7.11.2 and 6.8.15 a document disclosure flaw was found when Document or Field Level Security is used. | 5.3 |
| 2021-05-11 | CVE-2021-30482 | Improper Preservation of Permissions vulnerability in Jetbrains Upsource In JetBrains UpSource before 2020.1.1883, application passwords were not revoked correctly | 7.5 |