Vulnerabilities > Incorrect Permission Assignment for Critical Resource

DATE CVE VULNERABILITY TITLE RISK
2019-03-15 CVE-2018-19393 Incorrect Permission Assignment for Critical Resource vulnerability in Cobham products
Cobham Satcom Sailor 800 and 900 devices contained a vulnerability that allowed for arbitrary writing of content to the system's configuration file.
network
low complexity
cobham CWE-732
7.5
7.5
2019-03-15 CVE-2018-18254 Incorrect Permission Assignment for Critical Resource vulnerability in Capmon Access Manager 5.4.1.1005
An issue was discovered in CapMon Access Manager 5.4.1.1005.
local
low complexity
capmon CWE-732
7.8
7.8
2019-03-14 CVE-2018-12223 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Graphics Driver
Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to escape from a virtual machine guest-to-host via local access.
local
low complexity
intel CWE-732
6.3
6.3
2019-03-14 CVE-2018-12217 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Graphics Driver
Insufficient access control in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables a privileged user to read device configuration information via local access.
local
low complexity
intel CWE-732
2.3
2.3
2019-03-14 CVE-2018-12209 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Graphics Driver
Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to read device configuration information via local access.
local
low complexity
intel CWE-732
3.3
3.3
2019-03-14 CVE-2018-12200 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Capability Licensing Service
Insufficient access control in Intel(R) Capability Licensing Service before version 1.50.638.1 may allow an unprivileged user to potentially escalate privileges via local access.
local
low complexity
intel CWE-732
6.7
6.7
2019-03-13 CVE-2018-20621 Incorrect Permission Assignment for Critical Resource vulnerability in Microvirt Memu 6.0.6
An issue was discovered in Microvirt MEmu 6.0.6.
local
low complexity
microvirt CWE-732
7.8
7.8
2019-03-11 CVE-2019-1618 Incorrect Permission Assignment for Critical Resource vulnerability in Cisco Nx-Os
A vulnerability in the Tetration Analytics agent for Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker to execute arbitrary code as root.
local
low complexity
cisco CWE-732
7.8
7.8
2019-03-08 CVE-2019-1601 Incorrect Permission Assignment for Critical Resource vulnerability in Cisco Nx-Os
A vulnerability in the filesystem permissions of Cisco NX-OS Software could allow an authenticated, local attacker to gain read and write access to a critical configuration file.
local
low complexity
cisco CWE-732
7.8
7.8
2019-03-07 CVE-2019-1600 Incorrect Permission Assignment for Critical Resource vulnerability in Cisco Firepower Extensible Operating System
A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to access sensitive information that is stored in the file system of an affected system.
local
low complexity
cisco CWE-732
4.4
4.4