Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-10 | CVE-2015-9475 | Incorrect Default Permissions vulnerability in Pont Project Pont 1.5 The Pont theme 1.5 for WordPress has insufficient restrictions on option updates. | 6.5 |
| 2019-10-10 | CVE-2015-9474 | Incorrect Default Permissions vulnerability in Simpolio Project Simpolio 1.3.2 The Simpolio theme 1.3.2 for WordPress has insufficient restrictions on option updates. | 6.5 |
| 2019-10-09 | CVE-2019-17365 | Incorrect Default Permissions vulnerability in Nixos NIX Nix through 2.3 allows local users to gain access to an arbitrary user's account because the parent directory of the user-profile directories is world writable. | 4.6 |
| 2019-10-09 | CVE-2019-17383 | Incorrect Default Permissions vulnerability in Netaddr Project Netaddr The netaddr gem before 2.0.4 for Ruby has misconfigured file permissions, such that a gem install may result in 0777 permissions in the target filesystem. | 7.5 |
| 2019-10-09 | CVE-2019-17124 | Incorrect Default Permissions vulnerability in Kramerav Viaware 2.5.0719.1034 Kramer VIAware 2.5.0719.1034 has Incorrect Access Control. | 10.0 |
| 2019-10-07 | CVE-2019-16913 | Incorrect Default Permissions vulnerability in Pcprotect Antivirus 4.14.31 PC Protect Antivirus v4.14.31 installs by default to %PROGRAMFILES(X86)%\PCProtect with very weak folder permissions, granting any user full permission "Everyone: (F)" to the contents of the directory and its subfolders. | 7.2 |
| 2019-10-07 | CVE-2019-3688 | Incorrect Default Permissions vulnerability in Suse Linux Enterprise Server 12/15 The /usr/sbin/pinger binary packaged with squid in SUSE Linux Enterprise Server 15 before and including version 4.8-5.8.1 and in SUSE Linux Enterprise Server 12 before and including 3.5.21-26.17.1 had squid:root, 0750 permissions. | 6.6 |
| 2019-10-01 | CVE-2019-17056 | Incorrect Default Permissions vulnerability in Linux Kernel llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176. | 3.3 |
| 2019-10-01 | CVE-2019-17054 | Incorrect Default Permissions vulnerability in Linux Kernel atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c. | 3.3 |
| 2019-10-01 | CVE-2019-17053 | Incorrect Default Permissions vulnerability in Linux Kernel ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7. | 3.3 |