Falhas do tipo CWE-732
691 resultadosCVE-2026-25112HIGHA high-severity vulnerability in the deployment of Genetec RabbitMQ that allows a privilege escalation attack.EPSS 0.1%CVE-2025-52992LOWThe Nix, Lix, and Guix package managers fail to properly set permissions when a derivation build fails. This may allow arbitrary processes tEPSS 0.1%CVE-2024-6619HIGHIncorrect Permission Assignment for Critical Resource in Ocean Data Systems Dream ReportEPSS 0.1%CVE-2025-52923MEDIUMSangfor aTrust through 2.4.10 allows users to modify the ExecStartPre command.EPSS 0.1%CVE-2024-12363HIGHInsufficient permissions in the TeamViewer Patch & Asset Management componentEPSS 0.1%CVE-2025-30408MEDIUMLocal privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Cloud Agent (WindoEPSS 0.1%CVE-2026-29126HIGHWorld-Writable, Root Owned/Run `/etc/udhcpc/default.script` in IDC SFX2100 Satellite Receiver Leads To Potential LPEEPSS 0.1%CVE-2024-47783HIGHA vulnerability has been identified in SIPORT (All versions < V3.4.0). The affected application improperly assigns file permissions to instaEPSS 0.1%CVE-2025-23258HIGHNVIDIA DOCA contains a vulnerability in the collectx-dpeserver Debian package for arm64 that could allow an attacker with low privileges to EPSS 0.1%CVE-2024-10228LOWVagrant VMWare Utility installation files vulnerable to modification by unprivileged userEPSS 0.1%CVE-2025-23257HIGHNVIDIA DOCA contains a vulnerability in the collectx-clxapidev Debian package that could allow an actor with low privileges to escalate privEPSS 0.1%CVE-2026-23648HIGHGlory RBG-100 Recycler System Local Privilege Escalation via Insecure File PermissionsEPSS 0.1%CVE-2024-41171CRITICALA vulnerability has been identified in SINUMERIK 828D V4 (All versions), SINUMERIK 828D V5 (All versions < V5.24), SINUMERIK 840D sl V4 (AllEPSS 0.1%CVE-2025-23403HIGHA vulnerability has been identified in SIMATIC IPC DiagBase (All versions), SIMATIC IPC DiagMonitor (All versions). The affected device do nEPSS 0.1%CVE-2026-10840HIGHOpenshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resourcesEPSS 0.1%CVE-2026-1344MEDIUMInsecure file permissions in Enforce Recovery Key PortalEPSS 0.1%CVE-2025-62688MEDIUMAutomationDirect Productivity Suite Incorrect Permission Assignment for Critical ResourceEPSS 0.1%CVE-2025-31262MEDIUMA permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18EPSS 0.1%CVE-2026-45246MEDIUMSummarize < 0.15.1 Insecure File Permissions Information DisclosureEPSS 0.1%CVE-2026-7480HIGHAn Incorrect Permission Assignment for Critical Resource vulnerability in ASUS System Control Interface allows a local user to elevate priviEPSS 0.1%