Vulnerabilities > Incorrect Default Permissions

DATE	CVE	VULNERABILITY TITLE	RISK
2019-12-10	CVE-2019-14861	Incorrect Default Permissions vulnerability in multiple products All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the (poorly named) dnsserver RPC pipe provides administrative facilities to modify DNS records and zones. network high complexity samba fedoraproject canonical opensuse debian CWE-276	5.3
2019-12-03	CVE-2019-19460	Incorrect Default Permissions vulnerability in Saltosystem Proaccess Space 5.4.3.0/5.5 An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. local low complexity saltosystem CWE-276	5.5
2019-12-02	CVE-2019-19118	Incorrect Default Permissions vulnerability in multiple products Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended model editing. network low complexity djangoproject fedoraproject CWE-276	6.5
2019-12-02	CVE-2019-19490	Incorrect Default Permissions vulnerability in Litemanager 4.5.0 LiteManager 4.5.0 has weak permissions (Everyone: Full Control) in the "LiteManagerFree - Server" folder, as demonstrated by ROMFUSClient.exe. local low complexity litemanager CWE-276	7.3
2019-11-26	CVE-2018-20090	Incorrect Default Permissions vulnerability in Cloudera Data Science Workbench 1.4.0/1.4.1/1.4.2 An issue was discovered in Cloudera Data Science Workbench (CDSW) 1.4.0 through 1.4.2. network low complexity cloudera CWE-276	8.3
2019-11-26	CVE-2018-17860	Incorrect Default Permissions vulnerability in Cloudera CDH Cloudera CDH has Insecure Permissions because ALL cannot be revoked.This affects 5.x through 5.15.1 and 6.x through 6.0.1. network low complexity cloudera CWE-276	7.2
2019-11-25	CVE-2018-2025	Incorrect Default Permissions vulnerability in IBM products IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments 7.1 and 8.1 creates directories/files in the CIT sub directory that are read/writable by everyone. local low complexity ibm CWE-276	4.4
2019-11-25	CVE-2019-13662	Incorrect Default Permissions vulnerability in Google Chrome Insufficient policy enforcement in navigations in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass content security policy via a crafted HTML page. network low complexity google CWE-276	6.5
2019-11-25	CVE-2012-5578	Incorrect Default Permissions vulnerability in Python Keyring Python keyring has insecure permissions on new databases allowing world-readable files to be created local low complexity python CWE-276	6.2
2019-11-21	CVE-2019-19202	Incorrect Default Permissions vulnerability in Vtiger CRM 7.0/7.0.1/7.1.0 In Vtiger 7.x before 7.2.0, the My Preferences saving functionality allows a user without administrative privileges to change his own role by adding roleid=H2 to a POST request. network low complexity vtiger CWE-276	8.8