Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-08 | CVE-2024-23295 | Incorrect Default Permissions vulnerability in Apple Visionos 1.0.2 A permissions issue was addressed to help ensure Personas are always protected This issue is fixed in visionOS 1.1. | 5.5 |
| 2024-03-06 | CVE-2024-22889 | Incorrect Default Permissions vulnerability in Plone 6.0.9 Due to incorrect access control in Plone version v6.0.9, remote attackers can view and list all files hosted on the website via sending a crafted request. | 7.5 |
| 2024-03-05 | CVE-2024-20830 | Incorrect Default Permissions vulnerability in Samsung Android 11.0/12.0 Incorrect default permission in AppLock prior to SMR MAr-2024 Release 1 allows local attackers to configure AppLock settings. | 5.3 |
| 2024-03-05 | CVE-2024-20841 | Incorrect Default Permissions vulnerability in Samsung Account Improper Handling of Insufficient Privileges in Samsung Account prior to version 14.8.00.3 allows local attackers to access data. | 5.5 |
| 2024-02-21 | CVE-2023-42945 | Incorrect Default Permissions vulnerability in Apple Macos 14.0 A permissions issue was addressed with additional restrictions. | 5.5 |
| 2024-02-21 | CVE-2023-42953 | Incorrect Default Permissions vulnerability in Apple products A permissions issue was addressed with additional restrictions. | 5.5 |
| 2024-02-20 | CVE-2024-25605 | Incorrect Default Permissions vulnerability in Liferay Digital Experience Platform and Liferay Portal The Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and Liferay DXP 7.4.13, 7.3 before service pack 3, 7.2 before fix pack 17, and older unsupported versions grants guest users view permission to web content templates by default, which allows remote attackers to view any template via the UI or API. | 5.3 |
| 2024-02-14 | CVE-2023-41231 | Incorrect Default Permissions vulnerability in Intel Assistive Context-Aware Toolkit Incorrect default permissions in some ACAT software maintained by Intel(R) before version 2.0.0 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2024-02-14 | CVE-2023-34315 | Incorrect Default Permissions vulnerability in Intel Virtual Raid on CPU 8.0.0.4035 Incorrect default permissions in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2024-02-13 | CVE-2023-38960 | Incorrect Default Permissions vulnerability in Raidenftpd 2.4.4005 Insecure Permissions issue in Raiden Professional Server RaidenFTPD v.2.4 build 4005 allows a local attacker to gain privileges and execute arbitrary code via crafted executable running from the installation directory. | 7.3 |