Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-11 | CVE-2022-22148 | Incorrect Permission Assignment for Critical Resource vulnerability in Yokogawa products 'Root Service' service implemented in the following Yokogawa Electric products creates some named pipe with improper ACL configuration. | 7.8 |
| 2022-03-10 | CVE-2021-42855 | Incorrect Permission Assignment for Critical Resource vulnerability in Riverbed Steelcentral Appinternals Dynamic Sampling Agent 10.0.0/11.0.0/12.0.0 It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent (DSA) uses the ".debug_command.config" file to store a json string that contains a list of IDs and pre-configured commands. | 7.8 |
| 2022-03-07 | CVE-2021-4199 | Incorrect Permission Assignment for Critical Resource vulnerability in Bitdefender products Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools for Windows allows a remote attacker to escalate local privileges to SYSTEM. | 7.8 |
| 2022-03-01 | CVE-2022-25010 | Incorrect Permission Assignment for Critical Resource vulnerability in Stepmania 5.0.12/5.1.0 The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system. | 9.1 |
| 2022-02-25 | CVE-2022-24327 | Incorrect Permission Assignment for Critical Resource vulnerability in Jetbrains HUB In JetBrains Hub before 2021.1.13890, integration with JetBrains Account exposed an API key with excessive permissions. | 7.5 |
| 2022-02-25 | CVE-2022-0247 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Fuchsia 4.1/4.1.1/4.1.2 An issue exists in Fuchsia where VMO data can be modified through access to copy-on-write snapshots. | 5.5 |
| 2022-02-16 | CVE-2021-3557 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A flaw was found in argocd. | 6.5 |
| 2022-02-11 | CVE-2022-0483 | Incorrect Permission Assignment for Critical Resource vulnerability in Acronis VSS Doctor Local privilege escalation due to insecure folder permissions. | 7.8 |
| 2022-02-11 | CVE-2021-44521 | Incorrect Permission Assignment for Critical Resource vulnerability in Apache Cassandra When running Apache Cassandra with the following configuration: enable_user_defined_functions: true enable_scripted_user_defined_functions: true enable_user_defined_functions_threads: false it is possible for an attacker to execute arbitrary code on the host. | 9.1 |
| 2022-02-09 | CVE-2021-39992 | Incorrect Permission Assignment for Critical Resource vulnerability in Huawei Emui 12.0.0 There is an improper security permission configuration vulnerability on ACPU.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability. | 7.8 |