Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-22 | CVE-2023-7055 | Incorrect Permission Assignment for Critical Resource vulnerability in PHPgurukul Online Notes Sharing System 1.0 A vulnerability classified as problematic has been found in PHPGurukul Online Notes Sharing System 1.0. | 5.4 |
| 2023-12-14 | CVE-2023-25648 | Incorrect Permission Assignment for Critical Resource vulnerability in ZTE Zxcloud Irai There is a weak folder permission vulnerability in ZTE's ZXCLOUD iRAI product. | 7.8 |
| 2023-12-12 | CVE-2023-6593 | Incorrect Permission Assignment for Critical Resource vulnerability in Devolutions Remote Desktop Manager Client side permission bypass in Devolutions Remote Desktop Manager 2023.3.4.0 and earlier on iOS allows an attacker that has access to the application to execute entries in a SQL data source without restriction. | 9.8 |
| 2023-12-12 | CVE-2023-42924 | Incorrect Permission Assignment for Critical Resource vulnerability in Apple Macos A logic issue was addressed with improved checks. | 5.5 |
| 2023-12-10 | CVE-2023-50446 | Incorrect Permission Assignment for Critical Resource vulnerability in Mullvad VPN An issue was discovered in Mullvad VPN Windows app before 2023.6-beta1. | 7.8 |
| 2023-12-09 | CVE-2023-49797 | Incorrect Permission Assignment for Critical Resource vulnerability in Pyinstaller PyInstaller bundles a Python application and all its dependencies into a single package. | 7.8 |
| 2023-12-07 | CVE-2023-40302 | Incorrect Permission Assignment for Critical Resource vulnerability in Netscout Ngeniuspulse 3.8.00.2349.0 NETSCOUT nGeniusPULSE 3.8 has Weak File Permissions Vulnerability | 9.1 |
| 2023-12-03 | CVE-2023-49946 | Incorrect Permission Assignment for Critical Resource vulnerability in Forgejo In Forgejo before 1.20.5-1, certain endpoints do not check whether an object belongs to a repository for which permissions are being checked. | 9.1 |
| 2023-11-28 | CVE-2023-29065 | Incorrect Permission Assignment for Critical Resource vulnerability in BD Facschorus The FACSChorus software database can be accessed directly with the privileges of the currently logged-in user. | 4.3 |
| 2023-11-20 | CVE-2023-5651 | Incorrect Permission Assignment for Critical Resource vulnerability in Thimpress WP Hotel Booking The WP Hotel Booking WordPress plugin before 2.0.8 does not have authorisation and CSRF checks, as well as does not ensure that the package to be deleted is a package, allowing any authenticated users, such as subscriber to delete arbitrary posts | 5.4 |