Vulnerabilities > Permission Issues
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-11 | CVE-2019-1618 | Permission Issues vulnerability in Cisco Nx-Os 7.0(3)I4(9)/7.0(3)I7/7.0(3)I7(2) A vulnerability in the Tetration Analytics agent for Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker to execute arbitrary code as root. | 7.2 |
| 2018-11-26 | CVE-2017-1418 | Permission Issues vulnerability in IBM Integration BUS and Websphere Message Broker IBM Integration Bus 9.0.0.0, 9.0.0.11, 10.0.0.0, and 10.0.0.14 (including IBM WebSphere Message Broker 8.0.0.0 and 8.0.0.9) has insecure permissions on certain files. | 3.6 |
| 2018-09-11 | CVE-2016-7066 | Permission Issues vulnerability in Redhat Jboss Enterprise Application Platform It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations. | 7.8 |
| 2018-08-28 | CVE-2014-6047 | Permission Issues vulnerability in PHPmyfaq phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to read arbitrary attachments by leveraging incorrect "download an attachment" permission checks. | 5.0 |
| 2018-08-06 | CVE-2017-1396 | Permission Issues vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. | 5.5 |
| 2018-07-27 | CVE-2017-2590 | Permission Issues vulnerability in multiple products A vulnerability was found in ipa before 4.4. | 5.5 |
| 2018-06-11 | CVE-2016-9061 | Permission Issues vulnerability in Mozilla Firefox A previously installed malicious Android application which defines a specific signature-level permissions used by Firefox can access API keys meant for Firefox only. | 5.0 |
| 2018-06-11 | CVE-2016-5299 | Permission Issues vulnerability in Mozilla Firefox A previously installed malicious Android application with same signature-level permissions as Firefox can intercept AuthTokens meant for Firefox only. | 5.0 |
| 2018-06-08 | CVE-2013-3703 | Permission Issues vulnerability in Opensuse Open Build Service The controller of the Open Build Service API prior to version 2.4.4 is missing a write permission check, allowing an authenticated attacker to add or remove user roles from packages and/or project meta data. | 6.5 |
| 2018-05-04 | CVE-2012-5628 | Permission Issues vulnerability in Gofer Project Gofer 0.68 gofer before 0.68 uses world-writable permissions for /var/lib/gofer/journal/watchdog, which allows local users to cause a denial of service by removing journal entries. | 3.6 |