Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-17 | CVE-2021-25263 | Incorrect Permission Assignment for Critical Resource vulnerability in Yandex Browser Local privilege vulnerability in Yandex Browser for Windows prior to 21.9.0.390 allows a local, low privileged, attacker to execute arbitary code with the SYSTEM privileges through manipulating files in directory with insecure permissions during Yandex Browser update process. | 7.8 |
| 2021-08-16 | CVE-2021-36279 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. | 7.8 |
| 2021-08-16 | CVE-2021-36280 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. | 5.5 |
| 2021-08-16 | CVE-2021-36281 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment vulnerability. | 8.8 |
| 2021-08-12 | CVE-2021-37841 | Incorrect Permission Assignment for Critical Resource vulnerability in Docker Desktop Docker Desktop before 3.6.0 suffers from incorrect access control. | 7.8 |
| 2021-08-11 | CVE-2021-38590 | Incorrect Permission Assignment for Critical Resource vulnerability in Cpanel In cPanel before 96.0.8, weak permissions on web stats can lead to information disclosure (SEC-584). | 5.5 |
| 2021-08-11 | CVE-2017-16630 | Incorrect Permission Assignment for Critical Resource vulnerability in Sapphireims 40971 In SapphireIMS 4097_1, a guest user can create a local administrator account on any system that has SapphireIMS installed, because of an Insecure Direct Object Reference (IDOR) in the local user creation function. | 8.8 |
| 2021-08-11 | CVE-2017-16631 | Incorrect Permission Assignment for Critical Resource vulnerability in Sapphireims 40971 In SapphireIMS 4097_1, a guest user is able to change the password of an administrative user by utilizing an Insecure Direct Object Reference (IDOR) in the "Account Password Reset" functionality. | 6.5 |
| 2021-08-11 | CVE-2021-38085 | Incorrect Permission Assignment for Critical Resource vulnerability in Canon Pixma Tr150 Firmware 3.71.2.10 The Canon TR150 print driver through 3.71.2.10 is vulnerable to a privilege escalation issue. | 7.8 |
| 2021-08-05 | CVE-2021-32577 | Incorrect Permission Assignment for Critical Resource vulnerability in Acronis True Image 2021 Acronis True Image prior to 2021 Update 5 for Windows allowed local privilege escalation due to insecure folder permissions. | 7.8 |