Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-17 | CVE-2020-1571 | Incorrect Default Permissions vulnerability in Microsoft Windows 10 An elevation of privilege vulnerability exists in Windows Setup in the way it handles permissions. A locally authenticated attacker could run arbitrary code with elevated system privileges. | 7.3 |
| 2020-08-14 | CVE-2020-15145 | Incorrect Default Permissions vulnerability in Getcomposer Composer-Setup In Composer-Setup for Windows before version 6.0.0, if the developer's computer is shared with other users, a local attacker may be able to exploit the following scenarios. | 4.4 |
| 2020-08-13 | CVE-2020-8763 | Incorrect Default Permissions vulnerability in Intel products Improper permissions in the installer for the Intel(R) RealSense(TM) D400 Series UWP driver for Windows* 10 may allow an authenticated user to potentially enable escalation of privilege via local access. | 4.6 |
| 2020-08-13 | CVE-2020-8743 | Incorrect Default Permissions vulnerability in Intel Mailbox Interface Driver Improper permissions in the installer for the Intel(R) Mailbox Interface driver, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access. | 4.6 |
| 2020-08-13 | CVE-2020-12287 | Incorrect Default Permissions vulnerability in Intel Distribution of Openvino Toolkit Incorrect permissions in the Intel(R) Distribution of OpenVINO(TM) Toolkit before version 2020.2 may allow an authenticated user to potentially enable escalation of privilege via local access. | 4.6 |
| 2020-08-08 | CVE-2020-15821 | Incorrect Default Permissions vulnerability in Jetbrains Youtrack In JetBrains YouTrack before 2020.2.6881, a user without permission is able to create an article draft. | 4.0 |
| 2020-08-07 | CVE-2020-8026 | Incorrect Default Permissions vulnerability in Opensuse Backports Sle, Leap and Tumbleweed A Incorrect Default Permissions vulnerability in the packaging of inn in openSUSE Leap 15.2, openSUSE Tumbleweed, openSUSE Leap 15.1 allows local attackers with control of the new user to escalate their privileges to root. | 7.8 |
| 2020-07-30 | CVE-2020-8219 | Incorrect Default Permissions vulnerability in multiple products An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to change the password of a full administrator. | 7.2 |
| 2020-07-29 | CVE-2020-2077 | Incorrect Default Permissions vulnerability in Sick Package Analytics 04.0.0 SICK Package Analytics software up to and including version V04.0.0 are vulnerable due to incorrect default permissions settings. | 5.0 |
| 2020-07-24 | CVE-2020-10606 | Incorrect Default Permissions vulnerability in Osisoft products In OSIsoft PI System multiple products and versions, a local attacker can exploit incorrect permissions set by affected PI System software. | 4.6 |