Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-28 | CVE-2021-40415 | Incorrect Default Permissions vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability functionality of reolink RLC-410W v3.0.0.136_20121102. | 6.5 |
| 2022-01-28 | CVE-2021-40416 | Incorrect Default Permissions vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An incorrect default permission vulnerability exists in the cgiserver.cgi cgi_check_ability functionality of reolink RLC-410W v3.0.0.136_20121102. | 8.8 |
| 2022-01-26 | CVE-2021-41166 | Incorrect Default Permissions vulnerability in Nextcloud The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. | 5.3 |
| 2022-01-25 | CVE-2021-46085 | Incorrect Default Permissions vulnerability in Oneblog Project Oneblog OneBlog <= 2.2.8 is vulnerable to Insecure Permissions. | 6.5 |
| 2022-01-25 | CVE-2021-46086 | Incorrect Default Permissions vulnerability in Mindskip Xzs-Mysql T3.4.0 xzs-mysql >= t3.4.0 is vulnerable to Insecure Permissions. | 7.5 |
| 2022-01-24 | CVE-2022-22296 | Incorrect Default Permissions vulnerability in Hospital'S Patient Records Management System Project Hospital'S Patient Records Management System 1.0 Sourcecodester Hospital's Patient Records Management System 1.0 is vulnerable to Insecure Permissions via the id parameter in manage_user endpoint. | 5.3 |
| 2022-01-12 | CVE-2021-43860 | Incorrect Default Permissions vulnerability in multiple products Flatpak is a Linux application sandboxing and distribution framework. | 8.6 |
| 2022-01-10 | CVE-2021-40004 | Incorrect Default Permissions vulnerability in Huawei Harmonyos The cellular module has a vulnerability in permission management. | 7.5 |
| 2022-01-10 | CVE-2021-45003 | Incorrect Default Permissions vulnerability in Laundry Booking Management System Project Laundry Booking Management System 1.0 Laundry Booking Management System 1.0 (Latest) and previous versions are affected by a remote code execution (RCE) vulnerability in profile.php through the "image" parameter that can execute a webshell payload. | 9.8 |
| 2022-01-03 | CVE-2021-37132 | Incorrect Default Permissions vulnerability in Huawei Harmonyos PackageManagerService has a Permissions, Privileges, and Access Controls vulnerability .Successful exploitation of this vulnerability may cause that Third-party apps can obtain the complete list of Harmony apps without permission. | 5.3 |