Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-12 | CVE-2021-31519 | Incorrect Default Permissions vulnerability in Trendmicro Housecall for Home Networks 5.3.0.1063/5.3.1179 An incorrect permission vulnerability in the product installer folders for Trend Micro HouseCall for Home Networks version 5.3.1179 and below could allow an attacker to escalate privileges by placing arbitrary code on a specified folder and have that code be executed by an Administrator who is running a scan. | 7.3 |
| 2021-05-04 | CVE-2021-26804 | Incorrect Default Permissions vulnerability in Centreon web 19.10.18/20.04.8/20.10.2 Insecure Permissions in Centreon Web versions 19.10.18, 20.04.8, and 20.10.2 allows remote attackers to bypass validation by changing any file extension to ".gif", then uploading it in the "Administration/ Parameters/ Images" section of the application. | 6.5 |
| 2021-04-27 | CVE-2021-3451 | Incorrect Default Permissions vulnerability in Lenovo Pcmanager A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow configuration files to be written to non-standard locations. | 5.5 |
| 2021-04-27 | CVE-2021-28271 | Incorrect Default Permissions vulnerability in Soyal 701Clientsql, 701Server and 701Serversql Soyal Technologies SOYAL 701Server 9.0.1 suffers from an elevation of privileges vulnerability which can be used by an authenticated user to change the executable file with a binary choice. | 8.8 |
| 2021-04-26 | CVE-2021-20532 | Incorrect Default Permissions vulnerability in IBM products IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions. | 7.8 |
| 2021-04-21 | CVE-2020-27569 | Incorrect Default Permissions vulnerability in Aviatrix Openvpn Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. | 7.5 |
| 2021-04-14 | CVE-2021-30494 | Incorrect Default Permissions vulnerability in Razer Synapse 3.5.1030.101917 Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the Razer Chroma SDK subkey. | 5.5 |
| 2021-04-14 | CVE-2021-30493 | Incorrect Default Permissions vulnerability in Razer Synapse 3.5.1030.101917 Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the ChromaBroadcast subkey. | 5.5 |
| 2021-04-13 | CVE-2020-27228 | Incorrect Default Permissions vulnerability in Openclinic GA Project Openclinic GA 5.173.3 An incorrect default permissions vulnerability exists in the installation functionality of OpenClinic GA 5.173.3. | 7.8 |
| 2021-04-09 | CVE-2021-25381 | Incorrect Default Permissions vulnerability in Samsung Account 10.8.0.4/12.1.1.3 Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in Android P(9.0) and below, and 12.1.1.3 in Android Q(10.0) and above allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent. | 7.8 |