Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-22 | CVE-2021-21910 | Incorrect Default Permissions vulnerability in Advantech R-Seenet 2.4.15 A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.15 (30.07.2021). | 7.8 |
| 2021-12-22 | CVE-2021-21912 | Incorrect Default Permissions vulnerability in Advantech R-Seenet 2.4.15 A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.15 (30.07.2021). | 7.8 |
| 2021-12-20 | CVE-2021-44858 | Incorrect Default Permissions vulnerability in Mediawiki An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. | 7.5 |
| 2021-12-15 | CVE-2021-0979 | Incorrect Default Permissions vulnerability in Google Android 12.0 In isRequestPinItemSupported of ShortcutService.java, there is a possible cross-user leak of packages in which the default launcher supports requests to create pinned shortcuts due to a permissions bypass. | 5.5 |
| 2021-12-15 | CVE-2021-43325 | Incorrect Default Permissions vulnerability in Automox 33 Automox Agent 33 on Windows incorrectly sets permissions on a temporary directory. | 7.8 |
| 2021-12-15 | CVE-2021-43326 | Incorrect Default Permissions vulnerability in Automox 31 Automox Agent before 32 on Windows incorrectly sets permissions on a temporary directory. | 7.8 |
| 2021-12-12 | CVE-2021-44833 | Incorrect Default Permissions vulnerability in Amazon AWS Opensearch 1.0.0 The CLI 1.0.0 for Amazon AWS OpenSearch has weak permissions for the configuration file. | 9.8 |
| 2021-12-01 | CVE-2021-42711 | Incorrect Default Permissions vulnerability in Barracuda Network Access Client Barracuda Network Access Client before 5.2.2 creates a Temporary File in a Directory with Insecure Permissions. | 7.8 |
| 2021-11-24 | CVE-2021-31822 | Incorrect Default Permissions vulnerability in Octopus Tentacle When Octopus Tentacle is installed on a Linux operating system, the systemd service file permissions are misconfigured. | 7.8 |
| 2021-11-24 | CVE-2021-44140 | Incorrect Default Permissions vulnerability in Apache Jspwiki Remote attackers may delete arbitrary files in a system hosting a JSPWiki instance, versions up to 2.11.0.M8, by using a carefuly crafted http request on logout, given that those files are reachable to the user running the JSPWiki instance. | 9.1 |