Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-19 | CVE-2023-29244 | Incorrect Default Permissions vulnerability in Intel NUC P14E Laptop Element 1.0.0.156/1.1.44/1.1.45 Incorrect default permissions in some Intel Integrated Sensor Hub (ISH) driver for Windows 10 for Intel NUC P14E Laptop Element software installers before version 5.4.1.4479 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2024-01-16 | CVE-2024-22428 | Incorrect Default Permissions vulnerability in Dell EMC Idrac Service Module Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions vulnerability. It may allow a local unprivileged user to escalate privileges and execute arbitrary code on the affected system. | 7.8 |
| 2024-01-16 | CVE-2023-6457 | Incorrect Default Permissions vulnerability in Hitachi Tuning Manager Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows (Hitachi Tuning Manager server component) allows local users to read and write specific files.This issue affects Hitachi Tuning Manager: before 8.8.5-04. | 7.1 |
| 2024-01-10 | CVE-2022-45793 | Incorrect Default Permissions vulnerability in Omron Automation Software Sysmac Studio 1.54 Sysmac Studio installs executables in a directory with poor permissions. | 7.8 |
| 2024-01-06 | CVE-2023-50612 | Incorrect Default Permissions vulnerability in Fit2Cloud Cloudexplorer Lite 1.4.1 Insecure Permissions vulnerability in fit2cloud Cloud Explorer Lite version 1.4.1, allow local attackers to escalate privileges and obtain sensitive information via the cloud accounts parameter. | 7.8 |
| 2023-12-12 | CVE-2023-5536 | Incorrect Default Permissions vulnerability in Canonical Ubuntu Linux A feature in LXD (LP#1829071), affects the default configuration of Ubuntu Server which allows privileged users in the lxd group to escalate their privilege to root without requiring a sudo password. | 6.4 |
| 2023-12-09 | CVE-2023-28870 | Incorrect Default Permissions vulnerability in Ncp-E Secure Enterprise Client 10.14/10.15 Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts. | 6.5 |
| 2023-12-06 | CVE-2023-46773 | Incorrect Default Permissions vulnerability in Huawei Emui and Harmonyos Permission management vulnerability in the PMS module. | 9.8 |
| 2023-12-05 | CVE-2023-37572 | Incorrect Default Permissions vulnerability in Softing OPC Softing OPC Suite version 5.25 and before has Incorrect Access Control, allows attackers to obtain sensitive information via weak permissions in OSF_discovery service. | 7.5 |
| 2023-11-29 | CVE-2023-47462 | Incorrect Default Permissions vulnerability in Gl-Inet Gl-Ax1800 Firmware 3.125 Insecure Permissions vulnerability in GL.iNet AX1800 v.3.215 and before allows a remote attacker to execute arbitrary code via the file sharing function. | 9.8 |