Vulnerabilities > Improper Preservation of Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-05 | CVE-2020-15113 | Improper Preservation of Permissions vulnerability in multiple products In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. | 7.1 |
| 2020-07-10 | CVE-2020-8190 | Improper Preservation of Permissions vulnerability in Citrix products Incorrect file permissions in Citrix ADC and Citrix Gateway before versions 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows privilege escalation. | 7.5 |
| 2020-06-21 | CVE-2020-14958 | Improper Preservation of Permissions vulnerability in Gogs 0.11.91 In Gogs 0.11.91, MakeEmailPrimary in models/user_mail.go lacks a "not the owner of the email" check. | 6.5 |
| 2020-06-19 | CVE-2019-20846 | Improper Preservation of Permissions vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.18.0. | 7.5 |
| 2020-06-19 | CVE-2019-20843 | Improper Preservation of Permissions vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. | 7.5 |
| 2020-06-02 | CVE-2020-13763 | Improper Preservation of Permissions vulnerability in Joomla Joomla! In Joomla! before 3.9.19, the default settings of the global textfilter configuration do not block HTML inputs for Guest users. | 7.5 |
| 2020-05-20 | CVE-2020-13230 | Improper Preservation of Permissions vulnerability in multiple products In Cacti before 1.2.11, disabling a user account does not immediately invalidate any permissions granted to that account (e.g., permission to view logs). | 4.3 |
| 2020-05-19 | CVE-2020-2025 | Improper Preservation of Permissions vulnerability in Katacontainers Runtime Kata Containers before 1.11.0 on Cloud Hypervisor persists guest filesystem changes to the underlying image file on the host. | 8.8 |
| 2020-04-01 | CVE-2020-9781 | Improper Preservation of Permissions vulnerability in Apple Ipados and Iphone OS The issue was addressed by clearing website permission prompts after navigation. | 5.3 |
| 2020-03-13 | CVE-2020-10083 | Improper Preservation of Permissions vulnerability in Gitlab GitLab 12.7 through 12.8.1 has Insecure Permissions. | 9.1 |