Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-17 | CVE-2018-20500 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An insecure permissions issue was discovered in GitLab Community and Enterprise Edition 9.4 and later but before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. | 7.5 |
| 2019-05-16 | CVE-2018-20007 | Incorrect Permission Assignment for Critical Resource vulnerability in Yeelight Smart AI Speaker Firmware 3.3.100074 Yeelight Smart AI Speaker 3.3.10_0074 devices have improper access control over the UART interface, allowing physical attackers to obtain a root shell. | 6.8 |
| 2019-05-16 | CVE-2019-10116 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An Insecure Permissions issue (issue 3 of 3) was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. | 4.3 |
| 2019-05-16 | CVE-2019-10115 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An Insecure Permissions issue (issue 2 of 3) was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. | 6.5 |
| 2019-05-15 | CVE-2019-10110 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An Insecure Permissions issue (issue 1 of 3) was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. | 6.5 |
| 2019-05-14 | CVE-2019-11328 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products An issue was discovered in Singularity 3.1.0 to 3.2.0-rc2, a malicious user with local/network access to the host system (e.g. | 8.8 |
| 2019-05-13 | CVE-2019-8342 | Incorrect Permission Assignment for Critical Resource vulnerability in Foxitsoftware Foxit Reader 3.1.0.0111 A Local Privilege Escalation in libqcocoa.dylib in Foxit Reader 3.1.0.0111 on macOS has been discovered due to an incorrect permission set. | 7.8 |
| 2019-05-13 | CVE-2018-4028 | Incorrect Permission Assignment for Critical Resource vulnerability in Anker-In Roav Dashcam A1 Firmware 1.9 An exploitable firmware update vulnerability exists in the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. | 7.5 |
| 2019-05-13 | CVE-2018-12296 | Incorrect Permission Assignment for Critical Resource vulnerability in Seagate NAS OS 4.3.15.1 Insufficient access control in /api/external/7.0/system.System.get_infos in Seagate NAS OS version 4.3.15.1 allows attackers to obtain information about the NAS without authentication via empty POST requests. | 7.5 |
| 2019-05-06 | CVE-2018-4073 | Incorrect Permission Assignment for Critical Resource vulnerability in Sierrawireless Airlink Es450 Firmware 4.9.3 An exploitable Permission Assignment vulnerability exists in the ACEManager EmbeddedAceSet_Task.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. | 8.8 |