Vulnerabilities > Incorrect Default Permissions

DATE CVE VULNERABILITY TITLE RISK
2023-09-12 CVE-2023-37878 Incorrect Default Permissions vulnerability in Wftpserver Wing FTP Server
Insecure default permissions in Wing FTP Server (Admin Web Client) allows for privilege escalation.This issue affects Wing FTP Server: <= 7.2.0.
network
low complexity
wftpserver CWE-276
8.8
8.8
2023-09-11 CVE-2023-31067 Incorrect Default Permissions vulnerability in Tsplus Remote Access
An issue was discovered in TSplus Remote Access through 16.0.2.14.
network
low complexity
tsplus CWE-276
critical
 9.8
9.8
2023-09-11 CVE-2023-31068 Incorrect Default Permissions vulnerability in Tsplus Remote Access
An issue was discovered in TSplus Remote Access through 16.0.2.14.
network
low complexity
tsplus CWE-276
critical
 9.8
9.8
2023-09-11 CVE-2023-31468 Incorrect Default Permissions vulnerability in Inosoft Visiwin 7
An issue was discovered in Inosoft VisiWin 7 through 2022-2.1 (Runtime RT7.3 RC3 20221209.5).
local
low complexity
inosoft CWE-276
7.8
7.8
2023-09-06 CVE-2023-34352 Incorrect Default Permissions vulnerability in Apple products
A permissions issue was addressed with improved redaction of sensitive information.
network
low complexity
apple CWE-276
5.3
5.3
2023-08-16 CVE-2023-2737 Incorrect Default Permissions vulnerability in Thalesgroup Safenet Authentication Service 3.4.0
Improper log permissions in SafeNet Authentication Service Version 3.4.0 on Windows allows an authenticated attacker to cause a denial of service via local privilege escalation.
local
low complexity
thalesgroup CWE-276
5.5
5.5
2023-08-16 CVE-2023-32492 Incorrect Default Permissions vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS 9.5.0.x contains an incorrect default permissions vulnerability.
local
low complexity
dell CWE-276
7.1
7.1
2023-08-11 CVE-2023-27392 Incorrect Default Permissions vulnerability in Intel Support 21.7.40/22.02.28
Incorrect default permissions in the Intel(R) Support android application before version v23.02.07 may allow a privileged user to potentially enable information disclosure via local access.
local
low complexity
intel CWE-276
4.4
4.4
2023-08-11 CVE-2023-27505 Incorrect Default Permissions vulnerability in Intel Advanced Link Analyzer
Incorrect default permissions in some Intel(R) Advanced Link Analyzer Standard Edition software installers before version 22.1 .1 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-276
7.8
7.8
2023-08-11 CVE-2023-31246 Incorrect Default Permissions vulnerability in Intel Server Debug and Provisioning Tool
Incorrect default permissions in some Intel(R) SDP Tool software before version 1.4 build 5 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-276
7.8
7.8