Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-05 | CVE-2020-13540 | Incorrect Default Permissions vulnerability in Win911 Win-911 4.20.13 An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory via WIN-911 Account Change Utility. | 7.8 |
| 2021-01-05 | CVE-2020-13539 | Incorrect Default Permissions vulnerability in Win911 Win-911 4.20.13 An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory via “WIN-911 Mobile Runtime” service. | 7.8 |
| 2021-01-04 | CVE-2020-29492 | Incorrect Default Permissions vulnerability in Dell Wyse Thinos 8.6 Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. | 10.0 |
| 2021-01-04 | CVE-2020-29491 | Incorrect Default Permissions vulnerability in Dell Wyse Thinos 8.6 Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. | 8.6 |
| 2020-12-28 | CVE-2020-26031 | Incorrect Default Permissions vulnerability in Zammad An issue was discovered in Zammad before 3.4.1. | 4.3 |
| 2020-12-18 | CVE-2020-13535 | Incorrect Default Permissions vulnerability in Kepware Linkmaster 3.0.94.0 A privilege escalation vulnerability exists in Kepware LinkMaster 3.0.94.0. | 7.8 |
| 2020-12-15 | CVE-2020-0486 | Incorrect Default Permissions vulnerability in Google Android 11.0 In openAssetFileListener of ContactsProvider2.java, there is a possible permission bypass due to an insecure default value. | 7.8 |
| 2020-12-03 | CVE-2020-13542 | Incorrect Default Permissions vulnerability in Logicaldoc 8.5.1 A local privilege elevation vulnerability exists in the file system permissions of LogicalDoc 8.5.1 installation. | 7.8 |
| 2020-12-01 | CVE-2020-8539 | Incorrect Default Permissions vulnerability in KIA Head Unit Firmware Sop.003.30.18.0703/Sop.005.7.181019/Sop.007.1.191209 Kia Motors Head Unit with Software version: SOP.003.30.18.0703, SOP.005.7.181019, and SOP.007.1.191209 may allow an attacker to inject unauthorized commands, by executing the micomd executable deamon, to trigger unintended functionalities. | 7.8 |
| 2020-11-30 | CVE-2020-11867 | Incorrect Default Permissions vulnerability in multiple products Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. | 3.3 |