Vulnerabilities > Incorrect Default Permissions
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-04-14 | CVE-2021-28098 | Incorrect Default Permissions vulnerability in Forescout Counteract 8.0 An issue was discovered in Forescout CounterACT before 8.1.4. | 4.4 |
2021-04-13 | CVE-2020-27228 | Incorrect Default Permissions vulnerability in Openclinic GA Project Openclinic GA 5.173.3 An incorrect default permissions vulnerability exists in the installation functionality of OpenClinic GA 5.173.3. | 6.8 |
2021-04-09 | CVE-2021-25381 | Incorrect Default Permissions vulnerability in Samsung Account 10.8.0.4/12.1.1.3 Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in Android P(9.0) and below, and 12.1.1.3 in Android Q(10.0) and above allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent. | 4.6 |
2021-04-09 | CVE-2021-25359 | Incorrect Default Permissions vulnerability in Google Android 10.0/11.0 An improper SELinux policy prior to SMR APR-2021 Release 1 allows local attackers to access AP information without proper permissions via untrusted applications. | 2.1 |
2021-04-09 | CVE-2021-25358 | Incorrect Default Permissions vulnerability in Google Android 10.0/9.0 A vulnerability that stores IMSI values in an improper path prior to SMR APR-2021 Release 1 allows local attackers to access IMSI values without any permission via untrusted applications. | 2.1 |
2021-04-09 | CVE-2020-13534 | Incorrect Default Permissions vulnerability in Dreamreport Dream Report 5R202 A privilege escalation vulnerability exists in Dream Report 5 R20-2. | 6.8 |
2021-04-09 | CVE-2020-13533 | Incorrect Default Permissions vulnerability in Dreamreport Dream Report 5R202 A privilege escalation vulnerability exists in Dream Report 5 R20-2. | 4.4 |
2021-04-09 | CVE-2020-13532 | Incorrect Default Permissions vulnerability in Dreamreport Dream Report 5R202 A privilege escalation vulnerability exists in Dream Report 5 R20-2. | 7.2 |
2021-03-31 | CVE-2021-22538 | Incorrect Default Permissions vulnerability in Google Exposure Notifications Verification Server A privilege escalation vulnerability impacting the Google Exposure Notification Verification Server (versions prior to 0.23.1), allows an attacker who (1) has UserWrite permissions and (2) is using a carefully crafted request or malicious proxy, to create another user with higher privileges than their own. | 6.5 |
2021-03-25 | CVE-2021-27193 | Incorrect Default Permissions vulnerability in Netop Vision PRO Incorrect default permissions vulnerability in the API of Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to read and write files on the remote machine with system privileges resulting in a privilege escalation. | 7.5 |