Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-12 | CVE-2020-6295 | Incorrect Permission Assignment for Critical Resource vulnerability in SAP Adaptive Server Enterprise 16.0 Under certain conditions the SAP Adaptive Server Enterprise, version 16.0, allows an attacker to access encrypted sensitive and confidential information through publicly readable installation log files leading to a compromise of the installed Cockpit. | 7.8 |
| 2020-08-04 | CVE-2020-4631 | Incorrect Permission Assignment for Critical Resource vulnerability in IBM Spectrum Protect Plus IBM Spectrum Protect Plus 10.1.0 through 10.1.6 agent files, in non-default configurations, on Windows are assigned access to everyone with full control permissions, which could allow a local user to cause interruption of the service operations. | 5.5 |
| 2020-08-03 | CVE-2019-19455 | Incorrect Permission Assignment for Critical Resource vulnerability in Wowza Streaming Engine Wowza Streaming Engine before 4.8.5 has Insecure Permissions which may allow a local attacker to escalate privileges in / usr / local / WowzaStreamingEngine / manager / bin / in the Linux version of the server by writing arbitrary commands in any file and execute them as root. | 7.8 |
| 2020-07-28 | CVE-2020-13915 | Incorrect Permission Assignment for Critical Resource vulnerability in Ruckuswireless Unleashed Firmware Insecure permissions in emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allow a remote attacker to overwrite admin credentials via an unauthenticated crafted HTTP request. | 7.5 |
| 2020-07-22 | CVE-2014-1422 | Incorrect Permission Assignment for Critical Resource vulnerability in Canonical Trust-Store (Ubuntu) and Trust-Store (Ubuntu Rtm) In Ubuntu's trust-store, if a user revokes location access from an application, the location is still available to the application because the application will honour incorrect, cached permissions. | 5.0 |
| 2020-07-17 | CVE-2020-9671 | Incorrect Permission Assignment for Critical Resource vulnerability in Adobe Creative Cloud Desktop Application Adobe Creative Cloud Desktop Application versions 5.1 and earlier have an insecure file permissions vulnerability. | 9.8 |
| 2020-07-15 | CVE-2020-15697 | Incorrect Permission Assignment for Critical Resource vulnerability in Joomla Joomla! An issue was discovered in Joomla! through 3.9.19. | 4.3 |
| 2020-07-14 | CVE-2020-11827 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy In GOG Galaxy 1.2.67, there is a service that is vulnerable to weak file/service permissions: GalaxyClientService.exe. | 7.8 |
| 2020-07-14 | CVE-2020-6267 | Incorrect Permission Assignment for Critical Resource vulnerability in SAP Disclosure Management 10.1 Some sensitive cookies in SAP Disclosure Management, version 10.1, are missing HttpOnly flag, leading to sensitive cookie without Http Only flag. | 5.4 |
| 2020-07-06 | CVE-2020-5371 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale version 9.0.0 contain a file permissions vulnerability. | 8.8 |