Vulnerabilities > Improper Preservation of Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-16 | CVE-2021-39695 | Improper Preservation of Permissions vulnerability in Google Android 11.0 In createOrUpdate of BasePermission.java, there is a possible permission bypass due to a logic error in the code. | 7.8 |
| 2022-03-16 | CVE-2021-39704 | Improper Preservation of Permissions vulnerability in Google Android 10.0/11.0/12.0 In deleteNotificationChannelGroup of NotificationManagerService.java, there is a possible way to run foreground service without user notification due to a permissions bypass. | 7.8 |
| 2022-03-10 | CVE-2022-24618 | Improper Preservation of Permissions vulnerability in Heimdalsecurity Heimdal Premium Security 2.5.383/2.5.385/2.5.395 Heimdal.Wizard.exe installer in Heimdal Premium Security 2.5.395 and earlier has insecure permissions, which allows unprivileged local users to elevate privileges to SYSTEM via the "Browse For Folder" window accessible by triggering a "Repair" on the MSI package located in C:\Windows\Installer. | 7.8 |
| 2022-02-21 | CVE-2021-45008 | Improper Preservation of Permissions vulnerability in Plesk 18.0.37 Plesk CMS 18.0.37 is affected by an insecure permissions vulnerability that allows privilege Escalation from user to admin rights. | 8.8 |
| 2022-02-09 | CVE-2022-21203 | Improper Preservation of Permissions vulnerability in Intel Quartus Prime Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard Edition before version 21.1 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2022-01-05 | CVE-2021-43816 | Improper Preservation of Permissions vulnerability in multiple products containerd is an open source container runtime. | 9.1 |
| 2022-01-03 | CVE-2021-30279 | Improper Preservation of Permissions vulnerability in Qualcomm products Possible access control violation while setting current permission for VMIDs due to improper permission masking in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking | 7.8 |
| 2021-12-15 | CVE-2021-0704 | Improper Preservation of Permissions vulnerability in Google Android 10.0/11.0/9.0 In createNoCredentialsPermissionNotification and related functions of AccountManagerService.java, there is a possible way to retrieve accounts from the device without permissions due to a permissions bypass. | 5.5 |
| 2021-12-15 | CVE-2021-0927 | Improper Preservation of Permissions vulnerability in Google Android In requestChannelBrowsable of TvInputManagerService.java, there is a possible permission bypass due to a logic error in the code. | 7.8 |
| 2021-12-15 | CVE-2021-0953 | Improper Preservation of Permissions vulnerability in Google Android In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access contacts and history bookmarks without permission due to an unsafe PendingIntent. | 7.8 |