Vulnerabilities > Incorrect Default Permissions
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-07-24 | CVE-2024-36541 | Incorrect Default Permissions vulnerability in Kube-Logging Logging-Operator 4.6.0 Insecure permissions in logging-operator v4.6.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token. | 8.8 |
2024-06-12 | CVE-2024-37038 | Incorrect Default Permissions vulnerability in Schneider-Electric Sage RTU Firmware CWE-276: Incorrect Default Permissions vulnerability exists that could allow an authenticated user with access to the device’s web interface to perform unauthorized file and firmware uploads when crafting custom web requests. | 8.8 |
2024-02-13 | CVE-2023-50236 | A vulnerability has been identified in Polarion ALM (All versions < V2404.0). | 7.8 |
2024-02-01 | CVE-2024-22430 | Incorrect Default Permissions vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions vulnerability. | 5.5 |
2024-01-30 | CVE-2024-21840 | Incorrect Default Permissions vulnerability in Hitachi Storage Plug-In 04.8.0/04.9.0 Incorrect Default Permissions vulnerability in Hitachi Storage Plug-in for VMware vCenter allows local users to read and write specific files. This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.0.0 through 04.9.2. | 7.1 |
2024-01-26 | CVE-2023-29081 | Incorrect Default Permissions vulnerability in Flexera Installshield A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023 R2. | 5.5 |
2024-01-24 | CVE-2022-4964 | Incorrect Default Permissions vulnerability in Canonical Ubuntu Pipewire-Pulse Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set. | 5.5 |
2024-01-21 | CVE-2024-0770 | Incorrect Default Permissions vulnerability in Echa.Europa Iuclid 7.10.3 A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID 7.10.3 on Windows. | 7.1 |
2024-01-19 | CVE-2023-29244 | Incorrect Default Permissions vulnerability in Intel NUC P14E Laptop Element 1.0.0.156/1.1.44/1.1.45 Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for Intel NUC P14E Laptop Element software installers before version 5.4.1.4479 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
2024-01-16 | CVE-2024-22409 | Incorrect Default Permissions vulnerability in Datahub Project Datahub DataHub is an open-source metadata platform. | 8.8 |