Fallos del tipo CWE-732
691 resultadosCVE-2020-1706HIGHIt has been found that in openshift-enterprise version 3.11 and openshift-enterprise versions 4.1 up to, including 4.3, multiple containers EPSS 0.2%CVE-2026-8110HIGHIncorrect permissions assignment in the agent of Ivanti Endpoint Manager before version 2024 SU6 allows a local authenticated attacker to esEPSS 0.2%CVE-2025-62251MEDIUMLiferay Portal 7.3.0 through 7.4.3.119, and Liferay DXP 2023.Q3.1 through 2023.Q3.8, 2023.Q4.0 through 2023.Q4.5, 7.4 GA through update 92 aEPSS 0.2%CVE-2026-24131MEDIUMpnpm has Path Traversal via arbitrary file permission modificationEPSS 0.2%CVE-2024-38456HIGHHIGH-LEIT V05.08.01.03 and HIGH-LEIT V04.25.00.00 to 4.25.01.01 for Windows from Vivavis contain an insecure file and folder permissions vulEPSS 0.2%CVE-2025-70342MEDIUMerase-install prior to v40.4 commit 2c31239 writes swiftDialog credential output to a hardcoded path /var/tmp/dialog.json. This allows an unEPSS 0.2%CVE-2026-10997MEDIUMInsufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a EPSS 0.2%CVE-2024-7612HIGHInsecure permissions in Ivanti EPMM before 12.1.0.4 allow a local authenticated attacker to modify sensitive application components.EPSS 0.2%CVE-2025-20298HIGHIncorrect permission assignment on Universal Forwarder for Windows during new installation or upgradeEPSS 0.2%CVE-2023-28134HIGHLocal Privliege Escalation in Check Point Endpoint Security Remediation ServiceEPSS 0.2%CVE-2021-3747HIGHMacOS version of Multipass incorrect owner for application directoryEPSS 0.2%CVE-2024-41720HIGHIncorrect permission assignment for critical resource issue exists in ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15, which may allowEPSS 0.2%CVE-2025-42997MEDIUMInformation Disclosure vulnerability in SAP Gateway ClientEPSS 0.2%CVE-2022-3258LOWIncorrect Permission Assignment for Critical Resource vulnerability in HYPR Workforce Access on Windows allows Authentication Abuse.EPSS 0.2%CVE-2022-23448—A vulnerability has been identified in SIMATIC Energy Manager Basic (All versions < V7.3 Update 1), SIMATIC Energy Manager PRO (All versionsEPSS 0.2%CVE-2023-51579HIGHVoltronic Power ViewPower Incorrect Permission Assignment Local Privilege Escalation VulnerabilityEPSS 0.2%CVE-2024-27294HIGHdp-golang Go installation could be owned by wrong userEPSS 0.2%CVE-2025-34189MEDIUMVasion Print (formerly PrinterLogic) Insecure Inter-Process Communication Allows Local Session HijackingEPSS 0.2%CVE-2023-40516HIGHLG Simple Editor Incorrect Permission Assignment Local Privilege Escalation VulnerabilityEPSS 0.2%CVE-2021-23021—The Nginx Controller 3.x before 3.7.0 agent configuration file /etc/controller-agent/agent.conf is world readable with current permission biEPSS 0.2%