Vulnerabilities > Incorrect Default Permissions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-22 | CVE-2023-47250 | Incorrect Default Permissions vulnerability in M-Privacy Mprivacy-Tools, Rsbac-Policy-Tgpro and Tightgatevnc In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, broken Access Control on X11 server sockets allows authenticated attackers (with access to a VNC session) to access the X11 desktops of other users by specifying their DISPLAY ID. | 8.8 |
| 2023-11-22 | CVE-2023-43081 | Incorrect Default Permissions vulnerability in Dell Powerprotect Agent for File System PowerProtect Agent for File System Version 19.14 and prior, contains an incorrect default permissions vulnerability in ddfscon component. | 3.3 |
| 2023-11-20 | CVE-2023-3116 | Incorrect Default Permissions vulnerability in Openatom Openharmony in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information or rewrite sensitive file through incorrect default permissions. | 7.1 |
| 2023-11-20 | CVE-2023-42774 | Incorrect Default Permissions vulnerability in Openatom Openharmony in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information through incorrect default permissions. | 5.5 |
| 2023-11-18 | CVE-2023-40363 | Incorrect Default Permissions vulnerability in IBM Infosphere Information Server 11.7 IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation files due to incorrect file permission settings. | 6.5 |
| 2023-11-17 | CVE-2023-48648 | Incorrect Default Permissions vulnerability in Concretecms Concrete CMS Concrete CMS before 8.5.13 and 9.x before 9.2.2 allows unauthorized access because directories can be created with insecure permissions. | 9.8 |
| 2023-11-16 | CVE-2023-47335 | Incorrect Default Permissions vulnerability in Autelrobotics EVO Nano Drone Firmware 1.6.5 Insecure permissions in the setNFZEnable function of Autel Robotics EVO Nano drone v1.6.5 allows attackers to breach the geo-fence and fly into no-fly zones. | 6.5 |
| 2023-11-14 | CVE-2023-27305 | Incorrect Default Permissions vulnerability in Intel ARC a Graphics and Iris XE Graphics Incorrect default permissions in some Intel(R) Arc(TM) Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-14 | CVE-2023-32638 | Incorrect Default Permissions vulnerability in Intel ARC RGB Controller 1.03 Incorrect default permissions in some Intel Arc RGB Controller software before version 1.06 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2023-11-03 | CVE-2023-41726 | Incorrect Default Permissions vulnerability in Ivanti Avalanche Ivanti Avalanche Incorrect Default Permissions allows Local Privilege Escalation Vulnerability | 7.8 |