Vulnerabilities > Incorrect Default Permissions

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-02	CVE-2022-31500	Incorrect Default Permissions vulnerability in Knime Analytics Platform In KNIME Analytics Platform below 4.6.0, the Windows installer sets improper filesystem permissions. local low complexity knime CWE-276	7.8
2022-05-23	CVE-2022-28999	Incorrect Default Permissions vulnerability in Bloodshed Dev-C++ 4.9.9.2 Insecure permissions in the install directories and binaries of Dev-CPP v4.9.9.2 allows attackers to execute arbitrary code via overwriting the binary devcpp.exe. network low complexity bloodshed CWE-276	8.8
2022-05-23	CVE-2022-29376	Incorrect Default Permissions vulnerability in Apachefriends Xampp Xampp for Windows v8.1.4 and below was discovered to contain insecure permissions for its install directory, allowing attackers to execute arbitrary code via overwriting binaries located in the directory. network low complexity apachefriends CWE-276	8.8
2022-05-23	CVE-2022-28932	Incorrect Default Permissions vulnerability in Dlink Dsl-G2452Dg Firmware D-Link DSL-G2452DG HW:T1\\tFW:ME_2.00 was discovered to contain insecure permissions. network low complexity dlink CWE-276 critical	9.8
2022-05-17	CVE-2022-0486	Incorrect Default Permissions vulnerability in Fidelissecurity Deception and Network Improper file permissions in the CommandPost, Collector, Sensor, and Sandbox components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected files and enable escalation of privileges equivalent to the root user. local low complexity fidelissecurity CWE-276	7.8
2022-05-17	CVE-2022-0997	Incorrect Default Permissions vulnerability in Fidelissecurity Deception and Network Improper file permissions in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected script files, which could result in arbitrary commands being run as root upon subsequent logon by a root user. local low complexity fidelissecurity CWE-276	7.8
2022-05-17	CVE-2022-24890	Incorrect Default Permissions vulnerability in Nextcloud Talk Nextcloud Talk is a video and audio conferencing app for Nextcloud. network low complexity nextcloud CWE-276	4.3
2022-05-13	CVE-2022-30367	Incorrect Default Permissions vulnerability in AIR Cargo Management System Project AIR Cargo Management System 1.0 Air Cargo Management System v1.0 is vulnerable to file deletion via /acms/classes/Master.php?f=delete_img. network low complexity air-cargo-management-system-project CWE-276	6.5
2022-05-13	CVE-2022-30375	Incorrect Default Permissions vulnerability in Simple Social Networking Site Project Simple Social Networking Site 1.0 Sourcecodester Simple Social Networking Site v1.0 is vulnerable to file deletion via /sns/classes/Master.php?f=delete_img. network low complexity simple-social-networking-site-project CWE-276	6.5
2022-05-06	CVE-2022-23802	Incorrect Default Permissions vulnerability in Ijoomla Guru 5.2.5 Joomla Guru extension 5.2.5 is affected by: Insecure Permissions. network low complexity ijoomla CWE-276	7.5