Vulnerabilities > Improper Preservation of Permissions
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-09-18 | CVE-2020-0265 | Improper Preservation of Permissions vulnerability in Google Android 11.0 In Telephony, there are possible leaks of sensitive data due to missing permission checks. | 2.1 |
2020-09-15 | CVE-2020-13308 | Improper Preservation of Permissions vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. | 4.0 |
2020-09-14 | CVE-2019-0233 | Improper Preservation of Permissions vulnerability in multiple products An access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when performing a file upload. | 5.0 |
2020-08-13 | CVE-2020-13282 | Improper Preservation of Permissions vulnerability in Gitlab For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access. | 4.9 |
2020-08-05 | CVE-2020-15113 | Improper Preservation of Permissions vulnerability in multiple products In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. | 7.1 |
2020-07-10 | CVE-2020-8190 | Improper Preservation of Permissions vulnerability in Citrix products Incorrect file permissions in Citrix ADC and Citrix Gateway before versions 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows privilege escalation. | 6.0 |
2020-06-21 | CVE-2020-14958 | Improper Preservation of Permissions vulnerability in Gogs 0.11.91 In Gogs 0.11.91, MakeEmailPrimary in models/user_mail.go lacks a "not the owner of the email" check. | 4.0 |
2020-06-19 | CVE-2019-20846 | Improper Preservation of Permissions vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.18.0. | 5.0 |
2020-06-19 | CVE-2019-20843 | Improper Preservation of Permissions vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. | 5.0 |
2020-06-02 | CVE-2020-13763 | Improper Preservation of Permissions vulnerability in Joomla Joomla! In Joomla! before 3.9.19, the default settings of the global textfilter configuration do not block HTML inputs for Guest users. | 5.0 |