Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-28 | CVE-2021-40413 | Incorrect Default Permissions vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability functionality of reolink RLC-410W v3.0.0.136_20121102. | 7.1 |
| 2022-01-28 | CVE-2021-40414 | Incorrect Default Permissions vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability functionality of reolink RLC-410W v3.0.0.136_20121102. | 7.1 |
| 2022-01-28 | CVE-2021-40415 | Incorrect Default Permissions vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability functionality of reolink RLC-410W v3.0.0.136_20121102. | 6.5 |
| 2022-01-28 | CVE-2021-40416 | Incorrect Default Permissions vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability functionality of reolink RLC-410W v3.0.0.136_20121102. | 8.8 |
| 2022-01-26 | CVE-2021-41166 | Incorrect Default Permissions vulnerability in Nextcloud The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. | 5.3 |
| 2022-01-25 | CVE-2021-46085 | Incorrect Default Permissions vulnerability in Oneblog Project Oneblog OneBlog <= 2.2.8 is vulnerable to Insecure Permissions. | 6.5 |
| 2022-01-25 | CVE-2021-46086 | Incorrect Default Permissions vulnerability in Mindskip Xzs-Mysql T3.4.0 xzs-mysql >= t3.4.0 is vulnerable to Insecure Permissions. | 7.5 |
| 2022-01-24 | CVE-2022-22296 | Incorrect Default Permissions vulnerability in Hospital'S Patient Records Management System Project Hospital'S Patient Records Management System 1.0 Sourcecodester Hospital's Patient Records Management System 1.0 is vulnerable to Insecure Permissions via the id parameter in manage_user endpoint. | 5.3 |
| 2022-01-19 | CVE-2022-21704 | Incorrect Default Permissions vulnerability in multiple products log4js-node is a port of log4js to node.js. | 5.5 |
| 2022-01-14 | CVE-2021-36781 | Incorrect Default Permissions vulnerability in Opensuse Factory A Incorrect Default Permissions vulnerability in the parsec package of openSUSE Factory allows local attackers to imitate the service leading to DoS or clients talking to an imposter service. | 4.4 |