Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-12 | CVE-2022-47927 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. | 5.5 |
| 2022-12-21 | CVE-2022-4630 | Incorrect Permission Assignment for Critical Resource vulnerability in Daloradius Sensitive Cookie Without 'HttpOnly' Flag in GitHub repository lirantal/daloradius prior to master. | 5.3 |
| 2022-12-21 | CVE-2022-42949 | Incorrect Permission Assignment for Critical Resource vulnerability in Silverstripe Subsites Silverstripe silverstripe/subsites through 2.6.0 has Insecure Permissions. | 7.5 |
| 2022-12-13 | CVE-2022-43517 | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Star-Ccm+ A vulnerability has been identified in Simcenter STAR-CCM+ (All versions < V2306). | 7.8 |
| 2022-12-05 | CVE-2022-23143 | Incorrect Permission Assignment for Critical Resource vulnerability in ZTE Otcp Firmware 1.19.20.02 ZTE OTCP product is impacted by a permission and access control vulnerability. | 6.5 |
| 2022-11-30 | CVE-2022-46338 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products g810-led 0.4.2, a LED configuration tool for Logitech Gx10 keyboards, contained a udev rule to make supported device nodes world-readable and writable, allowing any process on the system to read traffic from keyboards, including sensitive data. | 6.5 |
| 2022-11-29 | CVE-2022-45301 | Incorrect Permission Assignment for Critical Resource vulnerability in Chocolatey Ruby Insecure permissions in Chocolatey Ruby package v3.1.2.1 and below grants all users in the Authenticated Users group write privileges for the path C:\tools\ruby31 and all files located in that folder. | 4.3 |
| 2022-11-29 | CVE-2022-45304 | Incorrect Permission Assignment for Critical Resource vulnerability in Chocolatey Cmder Insecure permissions in Chocolatey Cmder package v1.3.20 and below grants all users in the Authenticated Users group write privileges for the path C:\tools\Cmder and all files located in that folder. | 4.3 |
| 2022-11-29 | CVE-2022-45305 | Incorrect Permission Assignment for Critical Resource vulnerability in Chocolatey Python3 Insecure permissions in Chocolatey Python3 package v3.11.0 and below grants all users in the Authenticated Users group write privileges for the subfolder C:\Python311 and all files located in that folder. | 4.3 |
| 2022-11-29 | CVE-2022-45306 | Incorrect Permission Assignment for Critical Resource vulnerability in Chocolatey Azure-Pipelines-Agent Insecure permissions in Chocolatey Azure-Pipelines-Agent package v2.211.1 and below grants all users in the Authenticated Users group write privileges for the subfolder C:\agent and all files located in that folder. | 4.3 |