Fallos del tipo CWE-732
691 resultadosCVE-2025-23245MEDIUMNVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it allows a guest to accEPSS 0.1%CVE-2024-47808HIGHA vulnerability has been identified in SINEC NMS (All versions < V3.0 SP1). The affected application contains a database function, that doesEPSS 0.1%CVE-2025-40672HIGHPrivilege Escalation in Panloader.exeEPSS 0.1%CVE-2024-45657MEDIUMIBM Security Verify Access incorrect privilege assignmentEPSS 0.1%CVE-2025-36193HIGHIBM Transformation Advisor incorrect permissionsEPSS 0.1%CVE-2026-33430HIGHBriefcase: Windows MSI Installer Privilege Escalation via Insecure Directory PermissionsEPSS 0.1%CVE-2026-41489HIGHPi-hole: Local privilege escalation via config-controlled path in root-executed service hooksEPSS 0.1%CVE-2025-14604MEDIUMThe following vulnerabilities, which may affect IBM Storage Scale when a directory has a specific ACL composition and could lead to improper execute permissions, have been remediated in Storage Scale versions 5.2.3.6 and 6.0.0.2EPSS 0.1%CVE-2025-27688HIGHDell ThinOS 2408 and prior, contains an improper permissions vulnerability. A low privileged attacker with local access could potentially exEPSS 0.1%CVE-2025-61969HIGHIncorrect permission assignment in AMD µProf may allow a local user-privileged attacker to achieve privilege escalation, potentially resultiEPSS 0.1%CVE-2025-64699HIGHAn incorrect NULL DACL issue exists in SevenCs ORCA G2 2.0.1.35 (EC2007 Kernel v5.22). The regService process, which runs with SYSTEM privilEPSS 0.1%CVE-2026-28264LOWDell PowerProtect Agent Service, version(s) prior to 20.1, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerabilityEPSS 0.1%CVE-2025-43290MEDIUMA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26EPSS 0.1%CVE-2025-3394HIGHVulnerability in user management of Automation BuilderEPSS 0.1%CVE-2026-8612MEDIUMWWW::Mechanize::Cached versions before 2.00 for Perl deserialize cached HTTP responses from a world-writable on-disk cache, enabling local response forgery and code executionEPSS 0.1%CVE-2026-22768HIGHDell AppSync, version(s) 4.6.0, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attackerEPSS 0.1%CVE-2026-3113MEDIUMmmctl export download command doesn’t restrict permissions to created file to file ownerEPSS 0.1%CVE-2025-11906MEDIUMPrivilege escalation via writable configuration files in Progress FlowmonEPSS 0.1%CVE-2025-48382LOWFess has Insecure Temporary File PermissionsEPSS 0.1%CVE-2025-0758MEDIUMHitachi Vantara Pentaho Business Analytics Server - Incorrect Permission Assignment for Critical ResourceEPSS 0.1%