Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-27 | CVE-2021-38379 | Incorrect Default Permissions vulnerability in Northern.Tech Cfengine The Hub in CFEngine Enterprise 3.6.7 through 3.18.0 has Insecure Permissions that allow local Information Disclosure. | 5.5 |
| 2021-10-26 | CVE-2021-37363 | Incorrect Default Permissions vulnerability in Gestionaleopen Gestionale Open 11.00.00 An Insecure Permissions issue exists in Gestionale Open 11.00.00. | 7.8 |
| 2021-10-21 | CVE-2021-42011 | Incorrect Default Permissions vulnerability in Trendmicro Apex ONE 2019 An incorrect permission assignment vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to load a DLL with escalated privileges on affected installations. | 7.8 |
| 2021-10-21 | CVE-2021-40123 | Incorrect Default Permissions vulnerability in Cisco Identity Services Engine A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative read-only privileges to download files that should be restricted. | 6.5 |
| 2021-10-18 | CVE-2021-42055 | Incorrect Default Permissions vulnerability in Asus Ux582Lr Firmware 302 ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow attacks by a physically proximate attacker. | 6.8 |
| 2021-10-18 | CVE-2021-42098 | Incorrect Default Permissions vulnerability in Devolutions Remote Desktop Manager An incomplete permission check on entries in Devolutions Remote Desktop Manager before 2021.2.16 allows attackers to bypass permissions via batch custom PowerShell. | 8.8 |
| 2021-10-11 | CVE-2021-29005 | Incorrect Default Permissions vulnerability in Rconfig 3.9.6 Insecure permission of chmod command on rConfig server 3.9.6 exists. | 8.8 |
| 2021-10-05 | CVE-2021-39886 | Incorrect Default Permissions vulnerability in Gitlab Permissions rules were not applied while issues were moved between projects of the same group in GitLab versions starting with 10.6 and up to 14.1.7 allowing users to read confidential Epic references. | 4.3 |
| 2021-09-29 | CVE-2021-33923 | Incorrect Default Permissions vulnerability in Confluent Cp-Ansible Insecure permissions in Confluent Ansible (cp-ansible) 5.5.0, 5.5.1, 5.5.2 and 6.0.0 allows local attackers to access some sensitive information (private keys, state database). | 5.5 |
| 2021-09-28 | CVE-2021-36363 | Incorrect Default Permissions vulnerability in Nagios XI Nagios XI before 5.8.5 has Incorrect Permission Assignment for migrate.php. | 9.8 |