Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-06 | CVE-2024-11220 | Incorrect Permission Assignment for Critical Resource vulnerability in Openautomationsoftware Open Automation Software A local low-level user on the server machine with credentials to the running OAS services can create and execute a report with an rdlx file on the server system itself. | 7.8 |
| 2024-11-13 | CVE-2024-36276 | Incorrect Permission Assignment for Critical Resource vulnerability in Intel Computing Improvement Program Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2024-11-13 | CVE-2024-36294 | Incorrect Permission Assignment for Critical Resource vulnerability in Intel Driver & Support Assistant Insecure inherited permissions for some Intel(R) DSA software before version 24.3.26.8 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2024-11-12 | CVE-2024-9842 | Incorrect Permission Assignment for Critical Resource vulnerability in Ivanti Secure Access Client Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local authenticated attacker to create arbitrary folders. | 3.3 |
| 2024-11-12 | CVE-2024-47783 | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Siport A vulnerability has been identified in SIPORT (All versions < V3.4.0). | 7.8 |
| 2024-11-12 | CVE-2024-47808 | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Sinec NMS A vulnerability has been identified in SINEC NMS (All versions < V3.0 SP1). | 6.5 |
| 2024-10-29 | CVE-2024-10228 | Incorrect Permission Assignment for Critical Resource vulnerability in Hashicorp Vagrant VMWare Utility The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path that could be modified by an unprivileged user, introducing potential for unauthorized file system writes. | 3.3 |
| 2024-10-18 | CVE-2024-46897 | Incorrect Permission Assignment for Critical Resource vulnerability in Exceedone Exment Incorrect permission assignment for critical resource issue exists in Exment v6.1.4 and earlier and Exment v5.0.11 and earlier. | 3.8 |
| 2024-10-09 | CVE-2024-47833 | Incorrect Permission Assignment for Critical Resource vulnerability in Avaiga Taipy Taipy is an open-source Python library for easy, end-to-end application development for data scientists and machine learning engineers. | 6.5 |
| 2024-10-08 | CVE-2024-7612 | Incorrect Permission Assignment for Critical Resource vulnerability in Ivanti Endpoint Manager Mobile Insecure permissions in Ivanti EPMM before 12.1.0.4 allow a local authenticated attacker to modify sensitive application components. | 7.8 |