Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-17 | CVE-2019-19712 | Incorrect Default Permissions vulnerability in Contao Contao 4.0 through 4.8.5 has Insecure Permissions. | 5.0 |
| 2019-12-17 | CVE-2019-15011 | Incorrect Default Permissions vulnerability in Atlassian Application Links The ListEntityLinksServlet resource in Application Links before version 5.0.12, from version 5.1.0 before version 5.2.11, from version 5.3.0 before version 5.3.7, from version 5.4.0 before 5.4.13, and from version 6.0.0 before 6.0.5 disclosed application link information to non-admin users via a missing permissions check. | 4.0 |
| 2019-12-16 | CVE-2019-14605 | Incorrect Default Permissions vulnerability in Intel Setup and Configuration Software Platform Discovery Utility Improper permissions in the installer for the Intel(R) SCS Platform Discovery Utility, all versions, may allow an authenticated user to potentially enable escalation of privilege via local attack. | 4.6 |
| 2019-12-16 | CVE-2019-14603 | Incorrect Default Permissions vulnerability in Intel Quartus Prime Improper permissions in the installer for the License Server software for Intel® Quartus® Prime Pro Edition before version 19.3 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2019-12-16 | CVE-2019-14568 | Incorrect Default Permissions vulnerability in Intel Rapid Storage Technology Improper permissions in the executable for Intel(R) RST before version 17.7.0.1006 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2019-12-16 | CVE-2019-0134 | Incorrect Default Permissions vulnerability in Intel Dynamic Platform and Thermal Framework 8.3.10208.5643 Improper permissions in the Intel(R) Dynamic Platform and Thermal Framework v8.3.10208.5643 and before may allow an authenticated user to potentially execute code at an elevated level of privilege. | 4.6 |
| 2019-12-10 | CVE-2019-14861 | Incorrect Default Permissions vulnerability in multiple products All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the (poorly named) dnsserver RPC pipe provides administrative facilities to modify DNS records and zones. | 5.3 |
| 2019-12-03 | CVE-2019-19460 | Incorrect Default Permissions vulnerability in Saltosystem Proaccess Space 5.4.3.0/5.5 An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. | 6.6 |
| 2019-12-02 | CVE-2019-19118 | Incorrect Default Permissions vulnerability in multiple products Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended model editing. | 6.5 |
| 2019-12-02 | CVE-2019-19490 | Incorrect Default Permissions vulnerability in Litemanager 4.5.0 LiteManager 4.5.0 has weak permissions (Everyone: Full Control) in the "LiteManagerFree - Server" folder, as demonstrated by ROMFUSClient.exe. | 4.4 |