Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-13 | CVE-2024-36294 | Incorrect Permission Assignment for Critical Resource vulnerability in Intel Driver & Support Assistant Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2024-11-12 | CVE-2024-9842 | Incorrect Permission Assignment for Critical Resource vulnerability in Ivanti Secure Access Client Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local authenticated attacker to create arbitrary folders. | 3.3 |
| 2024-11-12 | CVE-2024-47783 | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Siport A vulnerability has been identified in SIPORT (All versions < V3.4.0). | 7.8 |
| 2024-11-12 | CVE-2024-47808 | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Sinec NMS A vulnerability has been identified in SINEC NMS (All versions < V3.0 SP1). | 6.5 |
| 2024-10-29 | CVE-2024-10228 | Incorrect Permission Assignment for Critical Resource vulnerability in Hashicorp Vagrant VMWare Utility The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path that could be modified by an unprivileged user, introducing potential for unauthorized file system writes. | 3.3 |
| 2024-10-18 | CVE-2024-46897 | Incorrect Permission Assignment for Critical Resource vulnerability in Exceedone Exment Incorrect permission assignment for critical resource issue exists in Exment v6.1.4 and earlier and Exment v5.0.11 and earlier. | 3.8 |
| 2024-10-09 | CVE-2024-47833 | Incorrect Permission Assignment for Critical Resource vulnerability in Avaiga Taipy Taipy is an open-source Python library for easy, end-to-end application development for data scientists and machine learning engineers. | 6.5 |
| 2024-10-08 | CVE-2024-7612 | Incorrect Permission Assignment for Critical Resource vulnerability in Ivanti Endpoint Manager Mobile Insecure permissions in Ivanti EPMM before 12.1.0.4 allow a local authenticated attacker to modify sensitive application components. | 7.8 |
| 2024-10-02 | CVE-2024-24117 | Incorrect Permission Assignment for Critical Resource vulnerability in Ruijie Rg-Nbs2009G-P Firmware 10.4(1)P2Release(9736) Insecure Permissions vulnerability in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release (9736) allows a remote attacker to gain privileges via the login check state component. | 9.8 |
| 2024-09-25 | CVE-2022-43845 | Incorrect Permission Assignment for Critical Resource vulnerability in IBM Aspera Console 3.4.0/3.4.1/3.4.2 IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. | 7.5 |