Vulnerabilities > Incorrect Default Permissions

DATE CVE VULNERABILITY TITLE RISK
2022-02-09 CVE-2021-33129 Incorrect Default Permissions vulnerability in Intel Advisor
Incorrect default permissions in the software installer for the Intel(R) Advisor before version 2021.4.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-276
7.8
7.8
2022-02-09 CVE-2021-33166 Incorrect Default Permissions vulnerability in Intel Retail Experience Tool
Incorrect default permissions for the Intel(R) RXT for Chromebook application, all versions, may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
intel CWE-276
5.5
5.5
2022-02-09 CVE-2022-21204 Incorrect Default Permissions vulnerability in Intel Quartus Prime
Improper permissions for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-276
7.8
7.8
2022-02-04 CVE-2022-24113 Incorrect Default Permissions vulnerability in Acronis products
Local privilege escalation due to excessive permissions assigned to child processes.
local
low complexity
acronis CWE-276
7.8
7.8
2022-02-02 CVE-2022-24301 Incorrect Default Permissions vulnerability in multiple products
In Minetest before 5.4.0, players can add or subtract items from a different player's inventory.
network
low complexity
minetest debian CWE-276
6.5
6.5
2022-02-01 CVE-2021-46093 Incorrect Default Permissions vulnerability in Elitecms Elite CMS 1.0
eliteCMS v1.0 is vulnerable to Insecure Permissions via manage_uploads.php.
network
low complexity
elitecms CWE-276
critical
 9.8
9.8
2022-01-28 CVE-2021-40388 Incorrect Default Permissions vulnerability in Advantech SQ Manager 1.0.6
A privilege escalation vulnerability exists in Advantech SQ Manager Server 1.0.6.
local
low complexity
advantech CWE-276
8.8
8.8
2022-01-28 CVE-2021-40389 Incorrect Default Permissions vulnerability in Advantech Deviceon/Iedge 1.0.2
A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2.
local
low complexity
advantech CWE-276
8.8
8.8
2022-01-28 CVE-2021-40396 Incorrect Default Permissions vulnerability in Advantech Deviceon/Iservice 1.1.7
A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iService 1.1.7.
local
low complexity
advantech CWE-276
8.8
8.8
2022-01-28 CVE-2021-40397 Incorrect Default Permissions vulnerability in Advantech Wise-Paas/Ota 3.0.9
A privilege escalation vulnerability exists in the installation of Advantech WISE-PaaS/OTA Server 3.0.9.
local
low complexity
advantech CWE-276
7.8
7.8