Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-12 | CVE-2018-6269 | Incorrect Permission Assignment for Critical Resource vulnerability in Nvidia Jetson TX2 R28.1/R28.2.1 NVIDIA Jetson TX2 contains a vulnerability in the kernel driver where input/output control (IOCTL) handling for user mode requests could create a non-trusted pointer dereference, which may lead to information disclosure, denial of service, escalation of privileges, or code execution. | 7.8 |
| 2019-04-11 | CVE-2018-17305 | Incorrect Permission Assignment for Critical Resource vulnerability in Uipath Orchestrator UiPath Orchestrator through 2018.2.4 allows any authenticated user to change the information of arbitrary users (even administrators) leading to privilege escalation and remote code execution. | 8.8 |
| 2019-04-09 | CVE-2018-19589 | Incorrect Permission Assignment for Critical Resource vulnerability in Utimaco Securityserver CSE Firmware 4.00 Incorrect Access Controls of Security Officer (SO) in PKCS11 R2 provider that ships with the Utimaco CryptoServer HSM product package allows an SO authenticated to a slot to retrieve attributes of keys marked as private keys in external key storage, and also delete keys marked as private keys in external key storage. | 6.5 |
| 2019-04-09 | CVE-2019-3893 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products In Foreman it was discovered that the delete compute resource operation, when executed from the Foreman API, leads to the disclosure of the plaintext password or token for the affected compute resource. | 4.9 |
| 2019-04-09 | CVE-2019-0804 | Incorrect Permission Assignment for Critical Resource vulnerability in Microsoft Walinuxagent An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files on resource disks, aka 'Azure Linux Agent Information Disclosure Vulnerability'. | 6.5 |
| 2019-04-08 | CVE-2018-1787 | Incorrect Permission Assignment for Critical Resource vulnerability in IBM products IBM Spectrum Protect 7.1 and 8.1 is affected by a password exposure vulnerability caused by insecure file permissions. | 5.5 |
| 2019-04-03 | CVE-2018-4324 | Incorrect Permission Assignment for Critical Resource vulnerability in Apple mac OS X A permissions issue existed in the handling of the Apple ID. | 5.5 |
| 2019-04-03 | CVE-2018-4178 | Incorrect Permission Assignment for Critical Resource vulnerability in Apple mac OS X A permissions issue existed in which execute permission was incorrectly granted. | 5.5 |
| 2019-04-02 | CVE-2018-4051 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy 1.2.47 An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. | 5.5 |
| 2019-04-02 | CVE-2018-4049 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy 1.2.48.36 An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's “Games” directory, version 1.2.48.36 (Windows 64-bit Installer). | 7.8 |