Vulnerabilities > Incorrect Default Permissions
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-11-02 | CVE-2020-3638 | Incorrect Default Permissions vulnerability in Qualcomm products u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130 | 4.6 |
2020-10-27 | CVE-2019-8777 | Incorrect Default Permissions vulnerability in Apple mac OS X A lock screen issue allowed access to contacts on a locked device. | 2.1 |
2020-10-23 | CVE-2019-14718 | Incorrect Default Permissions vulnerability in Verifone Mx900 Firmware 30251000 Verifone MX900 series Pinpad Payment Terminals with OS 30251000 have Insecure Permissions, with resultant svc_netcontrol arbitrary command injection and privilege escalation. | 4.6 |
2020-10-22 | CVE-2020-27665 | Incorrect Default Permissions vulnerability in Strapi In Strapi before 3.2.5, there is no admin::hasPermissions restriction for CTB (aka content-type-builder) routes. | 5.0 |
2020-10-21 | CVE-2020-17381 | Incorrect Default Permissions vulnerability in Ghisler Total Commander 9.51 An issue was discovered in Ghisler Total Commander 9.51. | 7.3 |
2020-10-14 | CVE-2020-0415 | Incorrect Default Permissions vulnerability in Google Android In various locations in SystemUI, there is a possible permission bypass due to an unsafe PendingIntent. | 2.1 |
2020-10-14 | CVE-2020-0414 | Incorrect Default Permissions vulnerability in Google Android 10.0/11.0 In AudioFlinger::RecordThread::threadLoop of audioflinger/Threads.cpp, there is a possible non-silenced audio buffer due to a permissions bypass. | 4.3 |
2020-10-14 | CVE-2020-0412 | Incorrect Default Permissions vulnerability in Google Android In setProcessMemoryTrimLevel of ActivityManagerService.java, there is a missing permission check. | 2.1 |
2020-10-14 | CVE-2020-0410 | Incorrect Default Permissions vulnerability in Google Android In setNotification of SapServer.java, there is a possible permission bypass due to a PendingIntent error. | 2.1 |
2020-09-24 | CVE-2020-15843 | Incorrect Default Permissions vulnerability in Actfax 7.10 ActFax Version 7.10 Build 0335 (2020-05-25) is susceptible to a privilege escalation vulnerability due to insecure folder permissions on %PROGRAMFILES%\ActiveFax\Client\, %PROGRAMFILES%\ActiveFax\Install\ and %PROGRAMFILES%\ActiveFax\Terminal\. | 4.4 |