Fallos del tipo CWE-732
691 resultadosCVE-2021-31894—A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.X (All versions < V9.1 SP2), SIMATIC EPSS 0.2%CVE-2026-1185MEDIUMA configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privileEPSS 0.2%CVE-2020-36916HIGHTDM Digital Signage PC Player 4.1.0.4 Privilege Escalation via Insecure PermissionsEPSS 0.2%CVE-2026-24834CRITICALKata Container to Guest micro VM privilege escalationEPSS 0.2%CVE-2024-6871HIGHG DATA Total Security Incorrect Permission Assignment Local Privilege Escalation VulnerabilityEPSS 0.2%CVE-2014-0068—It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permissiEPSS 0.2%CVE-2025-54546HIGHOn affected platforms, restricted users could use SSH port forwarding to access host-internal servicesEPSS 0.2%CVE-2025-48747MEDIUMNetwrix Directory Manager (formerly Imanami GroupID) before and including v.11.0.0.0 and after v.11.1.25134.03 has Incorrect Permission AssiEPSS 0.2%CVE-2023-29092LOWAn issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, and Exynos 1080. Binding EPSS 0.2%CVE-2025-41664HIGHImproper Permission Handling Enables Unauthorized Access to Firmware and CertificatesEPSS 0.2%CVE-2023-34042MEDIUMThe spring-security.xsd file inside the
spring-security-config jar is world writable which means that if it were
extracted it could be wriEPSS 0.2%CVE-2025-70341HIGHInsecure permissions in App-Auto-Patch v3.4.2 create a race condition which allows attackers to write arbitrary files.EPSS 0.2%CVE-2025-5819MEDIUMIncorrect Permission Assignment for Critical Resource in GitLabEPSS 0.2%CVE-2023-25648MEDIUMWeak Folder Permission Vulnerability in ZTE ZXCLOUD iRAIEPSS 0.2%CVE-2021-21567HIGHDell PowerScale OneFS 9.1.0.x contains an improper privilege management vulnerability. It may allow an authenticated user with ISI_PRIV_LOGIEPSS 0.2%CVE-2023-30897HIGHA vulnerability has been identified in SIMATIC WinCC (All versions < V7.5.2.13). Affected applications fail to set proper access rights for EPSS 0.2%CVE-2024-5915MEDIUMGlobalProtect App: Local Privilege Escalation (PE) VulnerabilityEPSS 0.2%CVE-2023-44387LOWGradle has incorrect permission assignment for symlinked files used in copy or archiving operationsEPSS 0.2%CVE-2021-37207—A vulnerability has been identified in SENTRON powermanager V3 (All versions). The affected application assigns improper access rights to a EPSS 0.2%CVE-2024-9842HIGHIncorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local authenticated attacker to create arbitrary foldersEPSS 0.2%