Vulnerabilities > Permission Issues

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-08	CVE-2013-3703	Permission Issues vulnerability in Opensuse Open Build Service The controller of the Open Build Service API prior to version 2.4.4 is missing a write permission check, allowing an authenticated attacker to add or remove user roles from packages and/or project meta data. network low complexity opensuse CWE-275	6.5
2018-05-04	CVE-2012-5628	Permission Issues vulnerability in Gofer Project Gofer 0.68 gofer before 0.68 uses world-writable permissions for /var/lib/gofer/journal/watchdog, which allows local users to cause a denial of service by removing journal entries. local low complexity gofer-project CWE-275	4.4
2018-05-01	CVE-2013-4201	Permission Issues vulnerability in Katello Katello allows remote authenticated users to call the "system remove_deletion" CLI command via vectors related to "remove system" permissions. network low complexity katello CWE-275	4.3
2018-05-01	CVE-2013-4040	Permission Issues vulnerability in IBM Tivoli Application Dependency Discovery Manager IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2.x before 7.2.1.5 and 7.2.x before 7.2.2.0 on Unix use weak permissions (755) for unspecified configuration and log files, which allows local users to obtain sensitive information by reading the files. local low complexity ibm CWE-275	5.5
2018-04-24	CVE-2016-8732	Permission Issues vulnerability in Sophos Invincea Dell Protected Workspace 5.1.122303 Multiple security flaws exists in InvProtectDrv.sys which is a part of Invincea Dell Protected Workspace 5.1.1-22303. local low complexity sophos CWE-275	7.8
2018-02-15	CVE-2017-5809	Permission Issues vulnerability in HP Data Protector A Remote Arbitrary Code Execution vulnerability in HPE Data Protector version prior to 8.17 and 9.09 was found. local low complexity hp CWE-275	5.5
2018-02-15	CVE-2016-8520	Permission Issues vulnerability in Eucalyptus HPE Helion Eucalyptus v4.3.0 and earlier does not correctly check IAM user's permissions for accessing versioned objects and ACLs. network low complexity eucalyptus CWE-275	8.8
2018-01-31	CVE-2014-1632	Permission Issues vulnerability in Eventum Project Eventum htdocs/setup/index.php in Eventum before 2.3.5 allows remote attackers to inject and execute arbitrary PHP code via the hostname parameter. network high complexity eventum-project CWE-275	8.1
2018-01-31	CVE-2014-1631	Permission Issues vulnerability in Eventum Project Eventum Eventum before 2.3.5 allows remote attackers to reinstall the application via direct request to /setup/index.php. network low complexity eventum-project CWE-275	7.5
2018-01-12	CVE-2017-16887	Permission Issues vulnerability in Fiberhome Lm53Q1 Firmware Vh519R05C01S38 The portal on FiberHome Mobile WIFI Device Model LM53Q1 VH519R05C01S38 uses SOAP based web services in order to interact with the portal. network low complexity fiberhome CWE-275 critical	9.8

Vulnerabilities > Permission Issues {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Permission Issues"}]}

Vulnerabilities > Permission Issues