Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-16 | CVE-2023-47335 | Incorrect Default Permissions vulnerability in Autelrobotics EVO Nano Drone Firmware 1.6.5 Insecure permissions in the setNFZEnable function of Autel Robotics EVO Nano drone v1.6.5 allows attackers to breach the geo-fence and fly into no-fly zones. | 6.5 |
| 2023-11-14 | CVE-2023-23583 | Incorrect Default Permissions vulnerability in multiple products Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access. | 7.8 |
| 2023-11-14 | CVE-2023-27305 | Incorrect Default Permissions vulnerability in Intel ARC a Graphics and Iris XE Graphics Incorrect default permissions in some Intel(R) Arc(TM) Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-32638 | Incorrect Default Permissions vulnerability in Intel ARC RGB Controller 1.03 Incorrect default permissions in some Intel Arc RGB Controller software before version 1.06 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-03 | CVE-2023-41726 | Incorrect Default Permissions vulnerability in Ivanti Avalanche Ivanti Avalanche Incorrect Default Permissions allows Local Privilege Escalation Vulnerability | 7.8 |
| 2023-11-03 | CVE-2023-4091 | Incorrect Default Permissions vulnerability in multiple products A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when the Samba VFS module "acl_xattr" is configured with "acl_xattr:ignore system acls = yes". | 6.5 |
| 2023-10-25 | CVE-2023-45990 | Incorrect Default Permissions vulnerability in Wenwen-Ai Wenwenai CMS 1.0 Insecure Permissions vulnerability in WenwenaiCMS v.1.0 allows a remote attacker to escalate privileges. | 8.0 |
| 2023-10-19 | CVE-2022-42150 | Incorrect Default Permissions vulnerability in Tinylab Cloud LAB and Linux LAB TinyLab linux-lab v1.1-rc1 and cloud-labv0.8-rc2, v1.1-rc1 are vulnerable to insecure permissions. | 10.0 |
| 2023-10-19 | CVE-2023-35181 | Incorrect Default Permissions vulnerability in Solarwinds Access Rights Manager The SolarWinds Access Rights Manager was susceptible to Privilege Escalation Vulnerability. | 7.8 |
| 2023-10-17 | CVE-2023-27133 | Incorrect Default Permissions vulnerability in Tsplus Remote Work 16.0.0.0 TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www folder. | 9.8 |