Vulnerabilities > Incorrect Default Permissions

DATE CVE VULNERABILITY TITLE RISK
2024-02-13 CVE-2023-50236 A vulnerability has been identified in Polarion ALM (All versions < V2404.0).
local
low complexity
CWE-276
7.8
2024-02-01 CVE-2024-22430 Incorrect Default Permissions vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions vulnerability.
local
low complexity
dell CWE-276
5.5
2024-01-30 CVE-2024-21840 Incorrect Default Permissions vulnerability in Hitachi Storage Plug-In 04.8.0/04.9.0
Incorrect Default Permissions vulnerability in Hitachi Storage Plug-in for VMware vCenter allows local users to read and write specific files. This issue affects Hitachi Storage Plug-in for VMware vCenter: from 04.0.0 through 04.9.2.
local
low complexity
hitachi CWE-276
7.1
2024-01-26 CVE-2023-29081 Incorrect Default Permissions vulnerability in Flexera Installshield
A vulnerability has been reported in Suite Setups built with versions prior to InstallShield 2023 R2.
local
low complexity
flexera CWE-276
5.5
2024-01-24 CVE-2022-4964 Incorrect Default Permissions vulnerability in Canonical Ubuntu Pipewire-Pulse
Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set.
local
low complexity
canonical CWE-276
5.5
2024-01-21 CVE-2024-0770 Incorrect Default Permissions vulnerability in Echa.Europa Iuclid 7.10.3
A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID 7.10.3 on Windows.
local
low complexity
echa-europa CWE-276
7.1
2024-01-19 CVE-2023-29244 Incorrect Default Permissions vulnerability in Intel NUC P14E Laptop Element 1.0.0.156/1.1.44/1.1.45
Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for Intel NUC P14E Laptop Element software installers before version 5.4.1.4479 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-276
7.8
2024-01-16 CVE-2024-22409 Incorrect Default Permissions vulnerability in Datahub Project Datahub
DataHub is an open-source metadata platform.
network
low complexity
datahub-project CWE-276
8.8
2024-01-16 CVE-2024-22428 Incorrect Default Permissions vulnerability in Dell EMC Idrac Service Module
Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions vulnerability. It may allow a local unprivileged user to escalate privileges and execute arbitrary code on the affected system.
local
low complexity
dell CWE-276
7.8
2024-01-16 CVE-2023-6457 Incorrect Default Permissions vulnerability in Hitachi Tuning Manager
Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows (Hitachi Tuning Manager server component) allows local users to read and write specific files.This issue affects Hitachi Tuning Manager: before 8.8.5-04.
local
low complexity
hitachi CWE-276
7.1