VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Incorrect Permission Assignment for Critical Resource
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2025-01-19
CVE-2024-38337
IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.1.0.0, and 6.2.0.0 could allow an unauthorized attacker to retrieve or alter sensitive information contents due to incorrect permission assignments.
network
low complexity
CWE-732
critical
9.1
9.1
2025-01-17
CVE-2025-21325
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
local
low complexity
CWE-732
7.8
7.8
2025-01-14
CVE-2024-11497
An authenticated attacker can use this vulnerability to perform a privilege escalation to gain root access.
network
low complexity
CWE-732
8.8
8.8
2025-01-06
CVE-2024-47475
Incorrect Permission Assignment for Critical Resource vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS 8.2.2.x through 9.8.0.x contains an incorrect permission assignment for critical resource vulnerability.
local
low complexity
dell
CWE-732
5.5
5.5
2024-12-31
CVE-2024-45497
A flaw was found in the OpenShift build process, where the docker-build container is configured with a hostPath volume mount that maps the node's /var/lib/kubelet/config.json file into the build pod.
network
low complexity
CWE-732
7.6
7.6
2024-12-18
CVE-2024-47104
IBM i 7.4 and 7.5 is vulnerable to an authenticated user gaining elevated privilege to a physical file.
network
high complexity
CWE-732
6.8
6.8
2024-11-18
CVE-2024-41970
A low privileged remote attacker may gain access to forbidden diagnostic data due to incorrect permission assignment for critical resources.
network
low complexity
CWE-732
5.7
5.7
2024-11-18
CVE-2024-41974
A low privileged remote attacker may modify the BACNet service properties due to incorrect permission assignment for critical resources which may lead to a DoS limited to BACNet communication.
network
low complexity
CWE-732
7.1
7.1
2024-11-12
CVE-2024-9842
Incorrect Permission Assignment for Critical Resource vulnerability in Ivanti Secure Access Client
Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local authenticated attacker to create arbitrary folders.
local
low complexity
ivanti
CWE-732
3.3
3.3
2024-11-12
CVE-2024-47783
Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Siport
A vulnerability has been identified in SIPORT (All versions < V3.4.0).
local
low complexity
siemens
CWE-732
7.8
7.8
«
1
(current)
2
3
4
5
...
111
112
»
Next