Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2019-20882 | Incorrect Default Permissions vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0. | 5.0 |
| 2020-06-19 | CVE-2020-14019 | Incorrect Default Permissions vulnerability in Rtslib-Fb Project Rtslib-Fb Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved. | 7.8 |
| 2020-06-17 | CVE-2019-9943 | Incorrect Default Permissions vulnerability in Openmicroscopy Omero.Server 5.6.0 In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled. | 5.0 |
| 2020-06-16 | CVE-2020-13431 | Incorrect Default Permissions vulnerability in Geti2P I2P I2P before 0.9.46 allows local users to gain privileges via a Trojan horse I2PSvc.exe file because of weak permissions on a certain %PROGRAMFILES% subdirectory. | 7.2 |
| 2020-06-15 | CVE-2020-14156 | Incorrect Default Permissions vulnerability in Openbmc-Project Openbmc user_channel/passwd_mgr.cpp in OpenBMC phosphor-host-ipmid before 2020-04-03 does not ensure that /etc/ipmi-pass has strong file permissions. | 6.5 |
| 2020-06-11 | CVE-2020-0215 | Incorrect Default Permissions vulnerability in Google Android In onCreate of ConfirmConnectActivity.java, there is a possible leak of Bluetooth information due to a permissions bypass. | 7.8 |
| 2020-06-11 | CVE-2020-0209 | Incorrect Default Permissions vulnerability in Google Android 10.0 In multiple functions of AccountManager.java, there is a possible permissions bypass. | 4.6 |
| 2020-06-11 | CVE-2020-0208 | Incorrect Default Permissions vulnerability in Google Android 10.0 In multiple functions of AccountManager.java, there is a possible permissions bypass. | 4.6 |
| 2020-06-11 | CVE-2020-0135 | Incorrect Default Permissions vulnerability in Google Android 10.0 In dump of RollbackManagerServiceImpl.java, there is a possible backup metadata exposure due to a missing permission check. | 2.1 |
| 2020-06-11 | CVE-2020-0133 | Incorrect Default Permissions vulnerability in Google Android 10.0 In MockLocationAppPreferenceController.java, it is possible to mock the GPS location of the device due to a permissions bypass. | 4.4 |