Vulnerabilities > Incorrect Permission Assignment for Critical Resource

DATE CVE VULNERABILITY TITLE RISK
2018-09-12 CVE-2018-12168 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Computing Improvement Program 2.1.03638
Privilege escalation in file permissions in Intel Computing Improvement Program before version 2.2.0.03942 may allow an authenticated user to potentially execute code as administrator via local access.
local
low complexity
intel CWE-732
7.8
7.8
2018-09-12 CVE-2018-12162 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Openvino Toolkit
Directory permissions in the Intel OpenVINO Toolkit for Windows before version 2018.1.265 may allow an authenticated user to potentially execute code using default directory permissions via local access.
local
low complexity
intel CWE-732
7.8
7.8
2018-09-12 CVE-2018-12148 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Driver & Support Assistant 3.1.1
Privilege escalation in file permissions in Intel Driver and Support Assistant before 3.5.0.1 may allow an authenticated user to potentially execute code as administrator via local access.
local
low complexity
intel CWE-732
7.8
7.8
2018-09-12 CVE-2018-15502 Incorrect Permission Assignment for Critical Resource vulnerability in Lwolf Loading Docs 20180813
Insecure permissions in Lone Wolf Technologies loadingDOCS 2018-08-13 allow remote attackers to download any confidential files via https requests for predictable URLs.
network
low complexity
lwolf CWE-732
7.5
7.5
2018-09-12 CVE-2018-13412 Incorrect Permission Assignment for Critical Resource vulnerability in Zohocorp Manageengine Desktop Central
An issue was discovered in the Self Service Portal in Zoho ManageEngine Desktop Central before 10.0.282.
local
low complexity
zohocorp CWE-732
7.8
7.8
2018-09-12 CVE-2018-13411 Incorrect Permission Assignment for Critical Resource vulnerability in Zohocorp Manageengine Desktop Central
An issue was discovered in Zoho ManageEngine Desktop Central before 10.0.282.
network
low complexity
zohocorp CWE-732
8.8
8.8
2018-09-11 CVE-2018-11078 Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Vplex Geosynchrony 5.4/5.5/6.0
Dell EMC VPlex GeoSynchrony, versions prior to 6.1, contains an Insecure File Permissions vulnerability.
network
high complexity
dell CWE-732
7.5
7.5
2018-09-08 CVE-2018-16715 Incorrect Permission Assignment for Critical Resource vulnerability in Absolute Ctes Windows Agent 1.0.0.1479
An issue was discovered in Absolute Software CTES Windows Agent through 1.0.0.1479.
network
low complexity
absolute CWE-732
8.8
8.8
2018-09-07 CVE-2018-16703 Incorrect Permission Assignment for Critical Resource vulnerability in Gleeztech Gleez CMS 1.2.0
A vulnerability in the Gleez CMS 1.2.0 login page could allow an unauthenticated, remote attacker to perform multiple user enumerations, which can further help an attacker to perform login attempts in excess of the configured login attempt limit.
network
low complexity
gleeztech CWE-732
5.3
5.3
2018-09-06 CVE-2018-1000660 Incorrect Permission Assignment for Critical Resource vulnerability in Tockos Tock 1.0/1.1
TOCK version prior to commit 42f7f36e74088036068d62253e1d8fb26605feed.
network
low complexity
tockos CWE-732
7.5
7.5