Vulnerabilities > Incorrect Default Permissions

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-18	CVE-2021-42055	Incorrect Default Permissions vulnerability in Asus Ux582Lr Firmware 302 ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow attacks by a physically proximate attacker. low complexity asus CWE-276	6.8
2021-10-18	CVE-2021-42098	Incorrect Default Permissions vulnerability in Devolutions Remote Desktop Manager An incomplete permission check on entries in Devolutions Remote Desktop Manager before 2021.2.16 allows attackers to bypass permissions via batch custom PowerShell. network low complexity devolutions CWE-276	8.8
2021-10-11	CVE-2021-29005	Incorrect Default Permissions vulnerability in Rconfig 3.9.6 Insecure permission of chmod command on rConfig server 3.9.6 exists. network low complexity rconfig CWE-276	8.8
2021-10-05	CVE-2021-39886	Incorrect Default Permissions vulnerability in Gitlab Permissions rules were not applied while issues were moved between projects of the same group in GitLab versions starting with 10.6 and up to 14.1.7 allowing users to read confidential Epic references. network low complexity gitlab CWE-276	4.3
2021-09-29	CVE-2021-33923	Incorrect Default Permissions vulnerability in Confluent Cp-Ansible Insecure permissions in Confluent Ansible (cp-ansible) 5.5.0, 5.5.1, 5.5.2 and 6.0.0 allows local attackers to access some sensitive information (private keys, state database). local low complexity confluent CWE-276	5.5
2021-09-28	CVE-2021-36363	Incorrect Default Permissions vulnerability in Nagios XI Nagios XI before 5.8.5 has Incorrect Permission Assignment for migrate.php. network low complexity nagios CWE-276 critical	9.8
2021-09-28	CVE-2021-36365	Incorrect Default Permissions vulnerability in Nagios XI Nagios XI before 5.8.5 has Incorrect Permission Assignment for repairmysql.sh. network low complexity nagios CWE-276 critical	9.8
2021-09-21	CVE-2021-20037	Incorrect Default Permissions vulnerability in Sonicwall Global VPN Client 4.10.4.0314 SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability leads to privilege escalation which potentially allows command execution in the host operating system. local low complexity sonicwall CWE-276	7.8
2021-09-08	CVE-2021-1831	Incorrect Default Permissions vulnerability in Apple Iphone OS The issue was addressed with improved permissions logic. local low complexity apple CWE-276	5.5
2021-09-08	CVE-2021-1832	Incorrect Default Permissions vulnerability in Apple products Copied files may not have the expected file permissions. local low complexity apple CWE-276	5.5