Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2017-18915 | Incorrect Default Permissions vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. | 9.8 |
| 2020-06-19 | CVE-2019-20889 | Incorrect Default Permissions vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.7, 5.6.3, 5.5.2, and 4.10.5. | 5.3 |
| 2020-06-19 | CVE-2019-20882 | Incorrect Default Permissions vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0. | 5.3 |
| 2020-06-19 | CVE-2020-14019 | Incorrect Default Permissions vulnerability in Rtslib-Fb Project Rtslib-Fb Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved. | 7.8 |
| 2020-06-17 | CVE-2019-9943 | Incorrect Default Permissions vulnerability in Openmicroscopy Omero.Server 5.6.0 In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled. | 7.5 |
| 2020-06-15 | CVE-2020-14156 | Incorrect Default Permissions vulnerability in Openbmc-Project Openbmc user_channel/passwd_mgr.cpp in OpenBMC phosphor-host-ipmid before 2020-04-03 does not ensure that /etc/ipmi-pass has strong file permissions. | 8.8 |
| 2020-06-11 | CVE-2020-0215 | Incorrect Default Permissions vulnerability in Google Android In onCreate of ConfirmConnectActivity.java, there is a possible leak of Bluetooth information due to a permissions bypass. | 7.8 |
| 2020-06-11 | CVE-2020-0209 | Incorrect Default Permissions vulnerability in Google Android 10.0 In multiple functions of AccountManager.java, there is a possible permissions bypass. | 7.8 |
| 2020-06-11 | CVE-2020-0208 | Incorrect Default Permissions vulnerability in Google Android 10.0 In multiple functions of AccountManager.java, there is a possible permissions bypass. | 7.8 |
| 2020-06-11 | CVE-2020-0133 | Incorrect Default Permissions vulnerability in Google Android 10.0 In MockLocationAppPreferenceController.java, it is possible to mock the GPS location of the device due to a permissions bypass. | 7.3 |