Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-28 | CVE-2022-38583 | Incorrect Default Permissions vulnerability in Sage 300 On versions of Sage 300 2017 - 2022 (6.4.x - 6.9.x) which are setup in a "Windows Peer-to-Peer Network" or "Client Server Network" configuration, a low-privileged Sage 300 workstation user could abuse their access to the "SharedData" folder on the connected Sage 300 server to view and/or modify the credentials associated with Sage 300 users and SQL accounts to impersonate users and/or access the SQL database as a system administrator. | 7.8 |
| 2023-04-25 | CVE-2022-31244 | Incorrect Default Permissions vulnerability in Nokia One-Network Directory Server 17R2 Nokia OneNDS 17r2 has Insecure Permissions vulnerability that allows for privilege escalation. | 7.8 |
| 2023-04-19 | CVE-2023-29923 | Incorrect Default Permissions vulnerability in Powerjob 4.3.1 PowerJob V4.3.1 is vulnerable to Insecure Permissions. | 5.3 |
| 2023-04-17 | CVE-2023-28966 | Incorrect Default Permissions vulnerability in Juniper Junos OS Evolved An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS Evolved allows a low-privileged local attacker with shell access to modify existing files or execute commands as root. | 7.8 |
| 2023-04-14 | CVE-2023-26918 | Incorrect Default Permissions vulnerability in Filereplicationpro File Replication PRO 7.5.0 Diasoft File Replication Pro 7.5.0 allows attackers to escalate privileges by replacing a legitimate file with a Trojan horse that will be executed as LocalSystem. | 9.8 |
| 2023-04-06 | CVE-2023-25542 | Incorrect Default Permissions vulnerability in Dell Trusted Device Agent Dell Trusted Device Agent, versions prior to 5.3.0, contain(s) an improper installation permissions vulnerability. | 7.8 |
| 2023-04-04 | CVE-2023-25355 | Incorrect Default Permissions vulnerability in Coredial Sipxcom CoreDial sipXcom up to and including 21.04 is vulnerable to Insecure Permissions. | 8.8 |
| 2023-04-04 | CVE-2023-25941 | Incorrect Default Permissions vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS versions 8.2.x-9.5.0.x contain an elevation of privilege vulnerability. | 7.8 |
| 2023-04-01 | CVE-2023-0181 | Incorrect Default Permissions vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in a kernel mode layer handler, where memory permissions are not correctly checked, which may lead to denial of service and data tampering. | 7.1 |
| 2023-03-27 | CVE-2022-48360 | Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos The facial recognition module has a vulnerability in file permission control. | 7.5 |