Fallos del tipo CWE-732
691 resultadosCVE-2024-30369HIGHA10 Thunder ADC Incorrect Permission Assignment Local Privilege Escalation VulnerabilityEPSS 0.3%CVE-2024-12151MEDIUMIncorrect permission assignment in the user migration feature in Devolutions Server 2024.3.8.0 and earlier allows users to retain their old EPSS 0.3%CVE-2016-9604MEDIUMIt was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as '.dns_resolver' in RHEPSS 0.3%CVE-2025-43759MEDIUMLiferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 throEPSS 0.3%CVE-2024-39875MEDIUMA vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application allows authenticatedEPSS 0.3%CVE-2020-1707HIGHA vulnerability was found in all openshift/postgresql-apb 4.x.x versions prior to 4.3.0, where an insecure modification vulnerability in theEPSS 0.3%CVE-2023-38037MEDIUMActiveSupport::EncryptedFile writes contents that will be encrypted to a
temporary file. The temporary file's permissions are defaulted toEPSS 0.3%CVE-2022-21946MEDIUMsuddoers configuration for cscreen not restrictive enoughEPSS 0.3%CVE-2023-32303MEDIUMPlanet's secret file is created with excessive permissionsEPSS 0.3%CVE-2025-10059MEDIUMMongoDB Server router will crash when incorrect lsid is set on a sharded queryEPSS 0.3%CVE-2022-22516HIGHCODESYS driver SysDrv3S allows SYSTEM users on Microsoft Windows to read and write in restricted memory space.EPSS 0.3%CVE-2022-44263HIGHDentsply Sirona Sidexis <= 4.3 is vulnerable to Incorrect Access Control.EPSS 0.3%CVE-2025-12147MEDIUMUnauthorized access to fields protected by Field-Level Security (FLS) when those fields are members of an objectEPSS 0.3%CVE-2025-12148MEDIUMUnauthorized access to fields protected by Field Masking (FM) for fields of type IPEPSS 0.3%CVE-2020-26194HIGHDell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability. This maEPSS 0.3%CVE-2026-40462HIGHiControl REST and tmsh vulnerabilityEPSS 0.2%CVE-2024-8540HIGHInsecure permissions in Ivanti Sentry before versions 9.20.2 and 10.0.2 or 10.1.0 allow a local authenticated attacker to modify sensitive aEPSS 0.2%CVE-2026-0775HIGHnpm cli Incorrect Permission Assignment Local Privilege Escalation VulnerabilityEPSS 0.2%CVE-2026-34352HIGHIn TigerVNC before 1.16.2, Image.cxx in x0vncserver allows other users to observe or manipulate the screen contents, or cause an applicationEPSS 0.2%CVE-2026-32704MEDIUMSiYuan renderSprig: missing admin check allows any user to read full workspace DBEPSS 0.2%