Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-06 | CVE-2021-31918 | Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Openstack 16.1 A flaw was found in tripleo-ansible version as shipped in Red Hat Openstack 16.1. | 7.5 |
| 2021-05-05 | CVE-2021-29247 | Incorrect Permission Assignment for Critical Resource vulnerability in Btcpayserver Btcpay Server BTCPay Server through 1.0.7.0 could allow a remote attacker to obtain sensitive information, caused by failure to set the HTTPOnly flag for a cookie. | 5.3 |
| 2021-04-30 | CVE-2021-20326 | Incorrect Permission Assignment for Critical Resource vulnerability in Mongodb A user authorized to performing a specific type of find query may trigger a denial of service. | 6.5 |
| 2021-04-27 | CVE-2021-28269 | Incorrect Permission Assignment for Critical Resource vulnerability in Soyal 701Client 9.0.1 Soyal Technology 701Client 9.0.1 is vulnerable to Insecure permissions via client.exe binary with Authenticated Users group with Full permissions. | 8.8 |
| 2021-04-23 | CVE-2021-31540 | Incorrect Permission Assignment for Critical Resource vulnerability in Wowza Streaming Engine Wowza Streaming Engine through 4.8.5 (in a default installation) has incorrect file permissions of configuration files in the conf/ directory. | 7.1 |
| 2021-04-21 | CVE-2020-27568 | Incorrect Permission Assignment for Critical Resource vulnerability in Aviatrix Controller 5.3.1516 Insecure File Permissions exist in Aviatrix Controller 5.3.1516. | 7.5 |
| 2021-04-14 | CVE-2021-28098 | Incorrect Permission Assignment for Critical Resource vulnerability in Forescout Counteract 8.0 An issue was discovered in Forescout CounterACT before 8.1.4. | 7.8 |
| 2021-04-13 | CVE-2021-28646 | Incorrect Permission Assignment for Critical Resource vulnerability in Trendmicro Apex ONE and Officescan An insecure file permissions vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to take control of a specific log file on affected installations. | 5.5 |
| 2021-04-13 | CVE-2021-28645 | Incorrect Permission Assignment for Critical Resource vulnerability in Trendmicro Apex ONE and Officescan An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to escalate privileges on affected installations. | 7.8 |
| 2021-04-13 | CVE-2021-25253 | Incorrect Permission Assignment for Critical Resource vulnerability in Trendmicro Apex ONE and Officescan An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local attacker to escalate privileges on affected installations. | 7.8 |