Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-07 | CVE-2022-22518 | Incorrect Default Permissions vulnerability in Codesys products A bug in CmpUserMgr component can lead to only partially applied security policies. | 6.5 |
| 2022-04-04 | CVE-2022-27649 | Incorrect Default Permissions vulnerability in multiple products A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. | 7.5 |
| 2022-04-04 | CVE-2022-27650 | Incorrect Default Permissions vulnerability in multiple products A flaw was found in crun where containers were incorrectly started with non-empty default permissions. | 7.5 |
| 2022-04-04 | CVE-2022-27651 | Incorrect Default Permissions vulnerability in multiple products A flaw was found in buildah where containers were incorrectly started with non-empty default permissions. | 6.8 |
| 2022-03-30 | CVE-2021-1000 | Incorrect Default Permissions vulnerability in Google Android 12.1 In createBluetoothDeviceSlice of ConnectedDevicesSliceProvider.java, there is a possible permission bypass due to an unsafe PendingIntent. | 7.8 |
| 2022-03-30 | CVE-2021-1033 | Incorrect Default Permissions vulnerability in Google Android 12.1 In createGeneralSlice of ConnectedDevicesSliceProvider.java.java, there is a possible permission bypass due to an unsafe PendingIntent. | 7.8 |
| 2022-03-30 | CVE-2021-39747 | Incorrect Default Permissions vulnerability in Google Android 12.1 In Settings Provider, there is a possible way to list values of non-readable global settings due to a permissions bypass. | 5.5 |
| 2022-03-30 | CVE-2021-39748 | Incorrect Default Permissions vulnerability in Google Android 12.1 In InputMethodEditor, there is a possible way to access some files accessible to Settings due to an unsafe PendingIntent. | 5.5 |
| 2022-03-30 | CVE-2021-39769 | Incorrect Default Permissions vulnerability in Google Android 12.1 In Device Policy, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. | 5.5 |
| 2022-03-30 | CVE-2021-39770 | Incorrect Default Permissions vulnerability in Google Android 12.1 In Framework, there is a possible disclosure of the device owner package due to a missing permission check. | 5.5 |