Vulnerabilities > Incorrect Permission Assignment for Critical Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-09 | CVE-2018-19589 | Incorrect Permission Assignment for Critical Resource vulnerability in Utimaco Securityserver CSE Firmware 4.00 Incorrect Access Controls of Security Officer (SO) in PKCS11 R2 provider that ships with the Utimaco CryptoServer HSM product package allows an SO authenticated to a slot to retrieve attributes of keys marked as private keys in external key storage, and also delete keys marked as private keys in external key storage. | 6.5 |
| 2019-04-09 | CVE-2019-3893 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products In Foreman it was discovered that the delete compute resource operation, when executed from the Foreman API, leads to the disclosure of the plaintext password or token for the affected compute resource. | 4.9 |
| 2019-04-09 | CVE-2019-0804 | Incorrect Permission Assignment for Critical Resource vulnerability in Microsoft Walinuxagent An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files on resource disks, aka 'Azure Linux Agent Information Disclosure Vulnerability'. | 6.5 |
| 2019-04-08 | CVE-2018-1787 | Incorrect Permission Assignment for Critical Resource vulnerability in IBM products IBM Spectrum Protect 7.1 and 8.1 is affected by a password exposure vulnerability caused by insecure file permissions. | 5.5 |
| 2019-04-03 | CVE-2018-4324 | Incorrect Permission Assignment for Critical Resource vulnerability in Apple mac OS X A permissions issue existed in the handling of the Apple ID. | 5.5 |
| 2019-04-03 | CVE-2018-4178 | Incorrect Permission Assignment for Critical Resource vulnerability in Apple mac OS X A permissions issue existed in which execute permission was incorrectly granted. | 5.5 |
| 2019-04-02 | CVE-2018-4051 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy 1.2.47 An exploitable local privilege escalation vulnerability exists in the privileged helper tool of GOG Galaxy's Games, version 1.2.47 for macOS. | 5.5 |
| 2019-04-02 | CVE-2018-4049 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy 1.2.48.36 An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's “Games” directory, version 1.2.48.36 (Windows 64-bit Installer). | 7.8 |
| 2019-04-02 | CVE-2018-3974 | Incorrect Permission Assignment for Critical Resource vulnerability in GOG Galaxy 1.2.45.61 An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's install directory. | 7.8 |
| 2019-04-02 | CVE-2019-4093 | Incorrect Permission Assignment for Critical Resource vulnerability in IBM Spectrum Protect 8.1.7 IBM Tivoli Storage Manager (IBM Spectrum Protect 8.1.7) could allow a user to restore files and directories using IBM Spectrum Prootect Client Web User Interface on Windows that they should not have access to due to incorrect file permissions. | 4.4 |