Vulnerabilities > Xerosecurity

DATE CVE VULNERABILITY TITLE RISK
2021-08-19 CVE-2021-39273 Incorrect Default Permissions vulnerability in Xerosecurity Sn1Per 9.0
In XeroSecurity Sn1per 9.0 (free version), insecure permissions (0777) are set upon application execution, allowing an unprivileged user to modify the application, modules, and configuration files.
network
low complexity
xerosecurity CWE-276
critical
9.0
2021-08-19 CVE-2021-39274 Incorrect Default Permissions vulnerability in Xerosecurity Sn1Per 9.0
In XeroSecurity Sn1per 9.0 (free version), insecure directory permissions (0777) are set during installation, allowing an unprivileged user to modify the main application and the application configuration file.
network
low complexity
xerosecurity CWE-276
critical
10.0