Vulnerabilities > Incorrect Permission Assignment for Critical Resource

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-09	CVE-2022-0532	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products An incorrect sysctls validation vulnerability was found in CRI-O 1.18 and earlier. network high complexity kubernetes redhat CWE-732	4.2
2022-02-04	CVE-2021-22284	Incorrect Permission Assignment for Critical Resource vulnerability in ABB OPC Server for AC 800M Incorrect Permission Assignment for Critical Resource vulnerability in OPC Server for AC 800M allows an attacker to execute arbitrary code in the node running the AC800M OPC Server. network low complexity abb CWE-732	8.8
2022-02-04	CVE-2021-29396	Incorrect Permission Assignment for Critical Resource vulnerability in Globalnorthstar Northstar Club Management 6.3 Systemic Insecure Permissions in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote unauthenticated users to use various functionalities without authentication. network low complexity globalnorthstar CWE-732 critical	9.8
2022-01-18	CVE-2022-21694	Incorrect Permission Assignment for Critical Resource vulnerability in Onionshare OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. network low complexity onionshare CWE-732	5.3
2022-01-18	CVE-2021-22566	Incorrect Permission Assignment for Critical Resource vulnerability in Google Fuchsia An incorrect setting of UXN bits within mmu_flags_to_s1_pte_attr lead to privileged executable pages being mapped as executable from an unprivileged context. network low complexity google CWE-732 critical	9.8
2022-01-14	CVE-2021-39621	Incorrect Permission Assignment for Critical Resource vulnerability in Google Android In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions bypass due to an unsafe PendingIntent. local low complexity google CWE-732	7.8
2022-01-14	CVE-2021-39627	Incorrect Permission Assignment for Critical Resource vulnerability in Google Android In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions bypass due to an unsafe PendingIntent. local low complexity google CWE-732	7.8
2022-01-13	CVE-2022-22988	Incorrect Permission Assignment for Critical Resource vulnerability in Westerndigital Edgerover 0.25 File and directory permissions have been corrected to prevent unintended users from modifying or accessing resources. network low complexity westerndigital CWE-732 critical	9.1
2022-01-13	CVE-2022-23132	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products During Zabbix installation from RPM, DAC_OVERRIDE SELinux capability is in use to access PID files in [/var/run/zabbix] folder. network low complexity zabbix fedoraproject CWE-732	7.3
2021-12-30	CVE-2021-20172	Incorrect Permission Assignment for Critical Resource vulnerability in Netgear Genie Installer All known versions of the Netgear Genie Installer for macOS contain a local privilege escalation vulnerability. local low complexity netgear CWE-732	7.8