Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-23 | CVE-2021-3701 | Incorrect Default Permissions vulnerability in Redhat Ansible Runner 2.0.0 A flaw was found in ansible-runner where the default temporary files configuration in ansible-2.0.0 are written to world R/W locations. | 6.6 |
| 2022-08-22 | CVE-2021-37289 | Incorrect Default Permissions vulnerability in Planex Mzk-Dp150N Firmware 1.42/1.43 Insecure Permissions in administration interface in Planex MZK-DP150N 1.42 and 1.43 allows attackers to execute system command as root via etc_ro/web/syscmd.asp. | 7.2 |
| 2022-08-18 | CVE-2021-44470 | Incorrect Default Permissions vulnerability in Intel Connect M Incorrect default permissions for the Intel(R) Connect M Android application before version 1.7.4 may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2022-08-18 | CVE-2022-26344 | Incorrect Default Permissions vulnerability in Intel Single Event API Incorrect default permissions in the installation binaries for Intel(R) SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2022-08-18 | CVE-2022-27500 | Incorrect Default Permissions vulnerability in Intel Support Incorrect default permissions for the Intel(R) Support Android application before 21.07.40 may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2022-08-16 | CVE-2021-39087 | Incorrect Default Permissions vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 could allow an authenticated user to obtain sensitive information due to improper permission controls. | 6.5 |
| 2022-08-16 | CVE-2021-30490 | Incorrect Default Permissions vulnerability in Power-Software-Download Viewpower 1.0421012/1.0421353 upsMonitor in ViewPower (aka ViewPowerHTML) 1.04-21012 through 1.04-21353 has insecure permissions for the service binary that enable an Authenticated User to modify files, allowing for privilege escalation. | 7.8 |
| 2022-08-12 | CVE-2022-20272 | Incorrect Default Permissions vulnerability in Google Android 13.0 In PermissionController, there is a possible misunderstanding about the default SMS application's permission set due to misleading text. | 5.5 |
| 2022-08-11 | CVE-2022-20246 | Incorrect Default Permissions vulnerability in Google Android 13.0.0 In WindowManager, there is a possible bypass of the restrictions for starting activities from the background due to an incorrect UID/permission check. | 7.8 |
| 2022-08-10 | CVE-2022-37003 | Incorrect Default Permissions vulnerability in Huawei Emui, Harmonyos and Magic UI The AOD module has a vulnerability in permission assignment. | 9.8 |