Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-11-06 | CVE-2020-3595 | Incorrect Permission Assignment for Critical Resource vulnerability in Cisco Sd-Wan A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root group on the underlying operating system. | 7.8 |
| 2020-11-06 | CVE-2020-17490 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions. | 5.5 |
| 2020-11-06 | CVE-2020-15708 | Incorrect Permission Assignment for Critical Resource vulnerability in Canonical Ubuntu Linux 20.04 Ubuntu's packaging of libvirt in 20.04 LTS created a control socket with world read and write permissions. | 7.8 |
| 2020-11-02 | CVE-2020-27992 | Incorrect Permission Assignment for Critical Resource vulnerability in Wondershare Dr.Fone 3.0.0 Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because %PROGRAMFILES(X86)%\Wondershare\dr.fone\Library\DriverInstaller has Full Control for BUILTIN\Users. | 7.8 |
| 2020-10-29 | CVE-2020-27658 | Incorrect Permission Assignment for Critical Resource vulnerability in Synology Router Manager Synology Router Manager (SRM) before 1.2.4-8081 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie. | 6.1 |
| 2020-10-28 | CVE-2020-26133 | Incorrect Permission Assignment for Critical Resource vulnerability in Dual Dhcp DNS Server Project Dual Dhcp DNS Server 7.40 An issue was discovered in Dual DHCP DNS Server 7.40. | 7.8 |
| 2020-10-28 | CVE-2020-26132 | Incorrect Permission Assignment for Critical Resource vulnerability in Home DNS Server Project Home DNS Server 0.10 An issue was discovered in Home DNS Server 0.10. | 7.8 |
| 2020-10-28 | CVE-2020-26131 | Incorrect Permission Assignment for Critical Resource vulnerability in Open Dhcp Server Project Open Dhcp Server 0.1/1.75 Issues were discovered in Open DHCP Server (Regular) 1.75 and Open DHCP Server (LDAP Based) 0.1Beta. | 7.8 |
| 2020-10-28 | CVE-2020-26130 | Incorrect Permission Assignment for Critical Resource vulnerability in Open Tftp Server Project Open Tftp Server 1.66 Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1.66. | 7.8 |
| 2020-10-21 | CVE-2020-10140 | Incorrect Permission Assignment for Critical Resource vulnerability in Acronis True Image 2021 Acronis True Image 2021 fails to properly set ACLs of the C:\ProgramData\Acronis directory. | 7.3 |