Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-09 | CVE-2021-0105 | Incorrect Permission Assignment for Critical Resource vulnerability in Intel products Insecure inherited permissions in some Intel(R) ProSet/Wireless WiFi drivers may allow an authenticated user to potentially enable information disclosure and denial of service via adjacent access. | 7.3 |
| 2021-06-07 | CVE-2020-1742 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products An insecure modification vulnerability flaw was found in containers using nmstate/kubernetes-nmstate-handler. | 7.0 |
| 2021-06-03 | CVE-2021-32460 | Incorrect Permission Assignment for Critical Resource vulnerability in Trendmicro Maximum Security 2021 17.0 The Trend Micro Maximum Security 2021 (v17) consumer product is vulnerable to an improper access control vulnerability in the installer which could allow a local attacker to escalate privileges on a target machine. | 7.8 |
| 2021-06-01 | CVE-2021-23021 | Incorrect Permission Assignment for Critical Resource vulnerability in F5 Nginx Controller The Nginx Controller 3.x before 3.7.0 agent configuration file /etc/controller-agent/agent.conf is world readable with current permission bits set to 644. | 5.5 |
| 2021-05-27 | CVE-2020-1701 | Incorrect Permission Assignment for Critical Resource vulnerability in Kubevirt A flaw was found in the KubeVirt main virt-handler versions before 0.26.0 regarding the access permissions of virt-handler. | 6.5 |
| 2021-05-27 | CVE-2021-31155 | Incorrect Permission Assignment for Critical Resource vulnerability in Umask Project Umask Failure to normalize the umask in please before 0.4 allows a local attacker to gain full root privileges if they are allowed to execute at least one command. | 7.8 |
| 2021-05-27 | CVE-2021-33586 | Incorrect Permission Assignment for Critical Resource vulnerability in Inspircd 3.8.0/3.8.1/3.9.0 InspIRCd 3.8.0 through 3.9.x before 3.10.0 allows any user (able to connect to the server) to access recently deallocated memory, aka the "malformed PONG" issue. | 4.3 |
| 2021-05-24 | CVE-2020-28909 | Incorrect Permission Assignment for Critical Resource vulnerability in Nagios Fusion Incorrect File Permissions in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to root via modification of scripts. | 8.8 |
| 2021-05-24 | CVE-2020-28910 | Incorrect Permission Assignment for Critical Resource vulnerability in Nagios XI Creation of a Temporary Directory with Insecure Permissions in Nagios XI 5.7.5 and earlier allows for Privilege Escalation via creation of symlinks, which are mishandled in getprofile.sh. | 9.8 |
| 2021-05-21 | CVE-2021-33509 | Incorrect Permission Assignment for Critical Resource vulnerability in Plone Plone through 5.2.4 allows remote authenticated managers to perform disk I/O via crafted keyword arguments to the ReStructuredText transform in a Python script. | 9.9 |