Vulnerabilities > Incorrect Permission Assignment for Critical Resource

DATE CVE VULNERABILITY TITLE RISK
2020-06-19 CVE-2018-21254 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.1.
network
low complexity
mattermost CWE-732
4.3
4.3
2020-06-19 CVE-2018-21253 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.1, 5.0.2, and 4.10.2.
network
low complexity
mattermost CWE-732
4.3
4.3
2020-06-19 CVE-2017-18876 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used.
network
low complexity
mattermost CWE-732
4.9
4.9
2020-06-19 CVE-2017-18875 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used.
network
low complexity
mattermost CWE-732
4.9
4.9
2020-06-19 CVE-2017-18870 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, and 4.3.4.
network
low complexity
mattermost CWE-732
4.3
4.3
2020-06-18 CVE-2020-10782 Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Ansible Tower 3.7.0
An exposure of sensitive information flaw was found in Ansible version 3.7.0.
local
low complexity
redhat CWE-732
6.5
6.5
2020-06-17 CVE-2020-11911 Incorrect Permission Assignment for Critical Resource vulnerability in Treck Tcp/Ip
The Treck TCP/IP stack before 6.0.1.66 has Improper ICMPv4 Access Control.
network
low complexity
treck CWE-732
5.3
5.3
2020-06-16 CVE-2020-13431 Incorrect Permission Assignment for Critical Resource vulnerability in Geti2P I2P
I2P before 0.9.46 allows local users to gain privileges via a Trojan horse I2PSvc.exe file because of weak permissions on a certain %PROGRAMFILES% subdirectory.
local
low complexity
geti2p CWE-732
7.8
7.8
2020-06-15 CVE-2020-5358 Incorrect Permission Assignment for Critical Resource vulnerability in Dell Encryption and Endpoint Security Suite Enterprise
Dell Encryption versions prior to 10.7 and Dell Endpoint Security Suite versions prior to 2.7 contain a privilege escalation vulnerability due to incorrect permissions.
local
low complexity
dell CWE-732
7.8
7.8
2020-06-15 CVE-2020-5755 Incorrect Permission Assignment for Critical Resource vulnerability in Webroot Endpoint Agents
Webroot endpoint agents prior to version v9.0.28.48 did not protect the "%PROGRAMDATA%\WrData\PKG" directory against renaming.
local
low complexity
webroot CWE-732
7.8
7.8