Vulnerabilities > Improper Preservation of Permissions

DATE CVE VULNERABILITY TITLE RISK
2021-03-12 CVE-2021-21379 Improper Preservation of Permissions vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
xwiki CWE-281
3.5
2021-03-09 CVE-2021-20263 Improper Preservation of Permissions vulnerability in Qemu
A flaw was found in the virtio-fs shared file system daemon (virtiofsd) of QEMU.
local
low complexity
qemu CWE-281
3.3
2021-02-26 CVE-2021-23963 Improper Preservation of Permissions vulnerability in Mozilla Firefox
When sharing geolocation during an active WebRTC share, Firefox could have reset the webRTC sharing state in the user interface, leading to loss of control over the currently granted permission.
network
mozilla CWE-281
4.3
2020-12-03 CVE-2020-26246 Improper Preservation of Permissions vulnerability in Pimcore
Pimcore is an open source digital experience platform.
network
low complexity
pimcore CWE-281
4.0
2020-11-13 CVE-2020-5796 Improper Preservation of Permissions vulnerability in Nagios XI 5.7.4
Improper preservation of permissions in Nagios XI 5.7.4 allows a local, low-privileged, authenticated user to weaken the permissions of files, resulting in low-privileged users being able to write to and execute arbitrary PHP code with root privileges.
local
low complexity
nagios CWE-281
7.2
2020-11-12 CVE-2020-24525 Improper Preservation of Permissions vulnerability in Intel products
Insecure inherited permissions in firmware update tool for some Intel(R) NUCs may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-281
4.6
2020-11-12 CVE-2020-12353 Improper Preservation of Permissions vulnerability in Intel Data Center Manager
Improper permissions in the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially enable denial of service via network access.
network
low complexity
intel CWE-281
4.0
2020-11-12 CVE-2020-12345 Improper Preservation of Permissions vulnerability in Intel Data Center Manager
Improper permissions in the installer for the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-281
4.6
2020-11-12 CVE-2020-12335 Improper Preservation of Permissions vulnerability in Intel Processor Identification Utility 6.1.0731
Improper permissions in the installer for the Intel(R) Processor Identification Utility before version 6.4.0603 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-281
4.6
2020-11-12 CVE-2020-12334 Improper Preservation of Permissions vulnerability in Intel Advisor Tools 2020
Improper permissions in the installer for the Intel(R) Advisor tools before version 2020 Update 2 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-281
4.6