Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-13 | CVE-2020-6441 | Incorrect Default Permissions vulnerability in multiple products Insufficient policy enforcement in omnibox in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass security UI via a crafted HTML page. | 4.3 |
| 2020-04-13 | CVE-2020-6439 | Incorrect Default Permissions vulnerability in multiple products Insufficient policy enforcement in navigations in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass security UI via a crafted HTML page. | 8.8 |
| 2020-04-13 | CVE-2020-6431 | Incorrect Default Permissions vulnerability in multiple products Insufficient policy enforcement in full screen in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to spoof security UI via a crafted HTML page. | 4.3 |
| 2020-04-08 | CVE-2020-1985 | Incorrect Default Permissions vulnerability in Paloaltonetworks Secdo Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. | 7.8 |
| 2020-04-08 | CVE-2018-21061 | Incorrect Default Permissions vulnerability in Google Android 7.1/8.0/8.1 An issue was discovered on Samsung mobile devices with N(7.1) and O(8.x) software. | 6.8 |
| 2020-04-07 | CVE-2017-18669 | Incorrect Default Permissions vulnerability in Google Android An issue was discovered on Samsung mobile devices with N(7.x) software. | 7.5 |
| 2020-04-07 | CVE-2017-18668 | Incorrect Default Permissions vulnerability in Google Android 6.0 An issue was discovered on Samsung mobile devices with M(6.0) software. | 7.5 |
| 2020-04-03 | CVE-2020-7004 | Incorrect Default Permissions vulnerability in Visam Vbase Editor and Vbase Web-Remote VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow weak or insecure permissions on the VBASE directory resulting in elevation of privileges or malicious effects on the system the next time a privileged user runs the application. | 8.8 |
| 2020-04-02 | CVE-2020-11444 | Incorrect Default Permissions vulnerability in Sonatype Nexus Sonatype Nexus Repository Manager 3.x up to and including 3.21.2 has Incorrect Access Control. | 8.8 |
| 2020-04-01 | CVE-2019-3944 | Incorrect Default Permissions vulnerability in Parrot Anafi Firmware Parrot ANAFI is vulnerable to Wi-Fi deauthentication attack, allowing remote and unauthenticated attackers to disconnect drone from controller during mid-flight. | 7.5 |