Vulnerabilities > Incorrect Default Permissions

DATE CVE VULNERABILITY TITLE RISK
2023-04-04 CVE-2023-25355 Incorrect Default Permissions vulnerability in Coredial Sipxcom
CoreDial sipXcom up to and including 21.04 is vulnerable to Insecure Permissions.
network
low complexity
coredial CWE-276
8.8
2023-04-01 CVE-2023-0181 Incorrect Default Permissions vulnerability in Nvidia Virtual GPU
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in a kernel mode layer handler, where memory permissions are not correctly checked, which may lead to denial of service and data tampering.
local
low complexity
nvidia CWE-276
7.1
2023-03-27 CVE-2022-48360 Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos
The facial recognition module has a vulnerability in file permission control.
network
low complexity
huawei CWE-276
7.5
2023-03-15 CVE-2022-46774 Incorrect Default Permissions vulnerability in IBM Manage Application 8.4.0/8.5.0
IBM Manage Application 8.8.0 and 8.9.0 in the IBM Maximo Application Suite is vulnerable to incorrect default permissions which could give access to a user to actions that they should not have access to.
network
low complexity
ibm CWE-276
6.5
2023-03-09 CVE-2022-3758 Incorrect Default Permissions vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 15.5 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2.
network
low complexity
gitlab CWE-276
5.4
2023-03-07 CVE-2023-1229 Incorrect Default Permissions vulnerability in Google Chrome
Inappropriate implementation in Permission prompts in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
network
low complexity
google CWE-276
4.3
2023-02-28 CVE-2023-25540 Incorrect Default Permissions vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.4.0.x contains an incorrect default permissions vulnerability.
local
low complexity
dell CWE-276
7.1
2023-02-28 CVE-2020-36652 Incorrect Default Permissions vulnerability in Hitachi products
Incorrect Default Permissions vulnerability in Hitachi Automation Director on Linux, Hitachi Infrastructure Analytics Advisor on Linux (Hitachi Infrastructure Analytics Advisor, Analytics probe server components), Hitachi Ops Center Automator on Linux, Hitachi Ops Center Analyzer on Linux (Hitachi Ops Center Analyzer, Analyzer probe server components), Hitachi Ops Center Viewpoint on Linux (Viewpoint RAID Agent component) allows local users to read and write specific files. This issue affects Hitachi Automation Director: from 8.2.0-00 through 10.6.1-00; Hitachi Infrastructure Analytics Advisor: from 2.0.0-00 through 4.0.0-00; Hitachi Ops Center Automator: before 10.9.1-00; Hitachi Ops Center Analyzer: before 10.9.1-00; Hitachi Ops Center Viewpoint: before 10.9.1-00.
local
low complexity
hitachi CWE-276
7.1
2023-02-28 CVE-2022-3884 Incorrect Default Permissions vulnerability in Hitachi OPS Center Analyzer 10.9.000
Incorrect Default Permissions vulnerability in Hitachi Ops Center Analyzer on Windows (Hitachi Ops Center Analyzer RAID Agent component) allows local users to read and write specific files.This issue affects Hitachi Ops Center Analyzer: from 10.9.0-00 before 10.9.0-01.
local
low complexity
hitachi CWE-276
7.1
2023-02-17 CVE-2021-34164 Incorrect Default Permissions vulnerability in Lizhifaka Project Lizhifaka 2.2.0
Permissions vulnerability in LIZHIFAKA v.2.2.0 allows authenticated attacker to execute arbitrary commands via the set password function in the admin/index/email location.
network
low complexity
lizhifaka-project CWE-276
8.8