Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-24 | CVE-2020-15850 | Incorrect Default Permissions vulnerability in Nakivo Backup & Replication Director 9.4.0.R43656 Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow local users to access the Nakivo Director web interface and gain root privileges. | 7.8 |
| 2020-09-24 | CVE-2020-26088 | Incorrect Default Permissions vulnerability in multiple products A missing CAP_NET_RAW check in NFC socket creation in net/nfc/rawsock.c in the Linux kernel before 5.8.2 could be used by local attackers to create raw sockets, bypassing security mechanisms, aka CID-26896f01467a. | 5.5 |
| 2020-09-18 | CVE-2020-0294 | Incorrect Default Permissions vulnerability in Google Android 11.0 In bindWallpaperComponentLocked of WallpaperManagerService.java, there is a possible permission bypass due to an unsafe PendingIntent. | 5.5 |
| 2020-09-17 | CVE-2020-0374 | Incorrect Default Permissions vulnerability in Google Android 11.0 In NFC, there is a possible permission bypass due to an unsafe PendingIntent. | 7.8 |
| 2020-09-17 | CVE-2020-0275 | Incorrect Default Permissions vulnerability in Google Android 11.0 In MediaProvider, there is a possible way to access ContentResolver and MediaStore entries the app shouldn't have access to due to a permissions bypass. | 7.8 |
| 2020-09-17 | CVE-2020-0390 | Incorrect Default Permissions vulnerability in Google Android 10.0/11.0 In the app zygote SE Policy, there is a possible permissions bypass. | 5.5 |
| 2020-09-17 | CVE-2020-0388 | Incorrect Default Permissions vulnerability in Google Android 10.0/11.0 In createEmergencyLocationUserNotification of GnssVisibilityControl.java, there is a possible permissions bypass due to an empty mutable PendingIntent. | 7.8 |
| 2020-09-15 | CVE-2020-8346 | Incorrect Default Permissions vulnerability in Lenovo System Interface Foundation 1.0.66.0/1.1.18.3/1.1.19.3 A denial of service vulnerability was reported in the Lenovo Vantage component called Lenovo System Interface Foundation prior to version 1.1.19.5 that could allow configuration files to be written to non-standard locations. | 5.5 |
| 2020-09-09 | CVE-2020-10050 | Incorrect Default Permissions vulnerability in Siemens Simatic Rtls Locating Manager 2.10/2.9.3 A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). | 7.8 |
| 2020-09-09 | CVE-2020-10049 | Incorrect Default Permissions vulnerability in Siemens Simatic Rtls Locating Manager 2.10/2.9.3 A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). | 7.3 |