Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-24 | CVE-2020-12842 | Incorrect Permission Assignment for Critical Resource vulnerability in Gogogate Ismartgate PRO Firmware 1.5.9 ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/checkUserExpirationDate.php. | 9.8 |
| 2020-09-24 | CVE-2020-12839 | Incorrect Permission Assignment for Critical Resource vulnerability in Gogogate Ismartgate PRO Firmware 1.5.9 ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/checkExpirationDate.php. | 9.8 |
| 2020-09-24 | CVE-2020-12838 | Incorrect Permission Assignment for Critical Resource vulnerability in Gogogate Ismartgate PRO Firmware 1.5.9 ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/mailAdmin.php. | 9.8 |
| 2020-09-23 | CVE-2020-25826 | Incorrect Permission Assignment for Critical Resource vulnerability in Pingidentity Pingid Integration for Windows Login PingID Integration for Windows Login before 2.4.2 allows local users to gain privileges by modifying CefSharp.BrowserSubprocess.exe. | 7.8 |
| 2020-09-22 | CVE-2020-11855 | Incorrect Permission Assignment for Critical Resource vulnerability in Microfocus Operation Bridge Reporter An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. | 7.8 |
| 2020-09-18 | CVE-2020-15776 | Incorrect Permission Assignment for Critical Resource vulnerability in Gradle Enterprise An issue was discovered in Gradle Enterprise 2018.2 - 2020.2.4. | 8.8 |
| 2020-09-16 | CVE-2020-1694 | Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Keycloak A flaw was found in all versions of Keycloak before 10.0.0, where the NodeJS adapter did not support the verify-token-audience. | 4.9 |
| 2020-09-16 | CVE-2014-10402 | Incorrect Permission Assignment for Critical Resource vulnerability in Perl DBI An issue was discovered in the DBI module through 1.643 for Perl. | 6.1 |
| 2020-09-16 | CVE-2020-10781 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM device nodes in the /dev/ directory. | 5.5 |
| 2020-09-11 | CVE-2014-10401 | Incorrect Permission Assignment for Critical Resource vulnerability in Perl DBI An issue was discovered in the DBI module before 1.632 for Perl. | 6.1 |