Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-732 (关键资源的不正确权限授予) — Vulnerability Class 443

443 vulnerabilities classified as CWE-732 (关键资源的不正确权限授予). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-57741 Fortinet FortiClientMAC 安全漏洞 — FortiClientMac 7.0 High2025-10-14
CVE-2025-62251 Liferay Portal和Liferay DXP 安全漏洞 — Portal 6.5AIMediumAI2025-10-13
CVE-2025-8886 Authorization Bypass in Usta Information Systems' Aybs Interaktif — Aybs Interaktif 6.7 Medium2025-10-10
CVE-2025-10751 MacForge 1.2.0 Beta 1 - Local Privilege Escalation — MacForge 7.8AIHighAI2025-10-04
CVE-2025-10541 Local Privilege Escalation via Insecure Update Mechanism in iMonitor EAM — iMonitor EAM 7.8AIHighAI2025-09-25
CVE-2025-43808 Liferay Portal和Liferay DXP 安全漏洞 — Portal 7.5 -2025-09-19
CVE-2025-34189 Vasion Print (formerly PrinterLogic) Insecure Inter-Process Communication Allows Local Session Hijacking — Print Virtual Appliance Host 7.8 -2025-09-19
CVE-2025-34206 Vasion Print (formerly PrinterLogic) Insecure Shared Storage Permissions — Print Virtual Appliance Host 8.4 -2025-09-19
CVE-2025-54497 Cognex In-Sight Explorer and In-Sight Camera Firmware Incorrect Permission Assignment for Critical Resource — In-Sight 2000 series 8.1 High2025-09-18
CVE-2025-52873 Cognex In-Sight Explorer and In-Sight Camera Firmware Incorrect Permission Assignment for Critical Resource — In-Sight 2000 series 8.1 High2025-09-18
CVE-2025-10643 Wondershare Repairit Incorrect Permission Assignment Authentication Bypass Vulnerability — Repairit 9.8AICriticalAI2025-09-17
CVE-2025-59349 Directories created via os.MkdirAll are not checked for permissions — dragonfly 3.3AILowAI2025-09-17
CVE-2025-0164 IBM QRadar SIEM information disclosure — QRadar SIEM 2.3 Low2025-09-14
CVE-2025-40804 Siemens SIMATIC Virtualization as a Service 安全漏洞 — SIMATIC Virtualization as a Service (SIVaaS) 9.1 Critical2025-09-09
CVE-2025-41664 Improper Permission Handling Enables Unauthorized Access to Firmware and Certificates — Coupler 0750-0362 7.5 High2025-09-08
CVE-2025-58372 Roo Code: Potential Remote Code Execution via .code-workspace — Roo-Code 8.1 High2025-09-05
CVE-2025-10059 MongoDB Server router will crash when incorrect lsid is set on a sharded query — MongoDB Server 6.5 Medium2025-09-05
CVE-2025-23258 NVIDIA DOCA 安全漏洞 — NVIDIA DOCA with collectx-dpeserver 7.3 High2025-09-04
CVE-2025-23257 NVIDIA DOCA 安全漏洞 — NVIDIA DOCA with collectx-clxapidev 7.3 High2025-09-04
CVE-2025-36193 IBM Transformation Advisor incorrect permissions — Transformation Advisor 8.4 High2025-09-03
CVE-2025-9578 Acronis Cyber Protect Cloud Agent 安全漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2025-08-28
CVE-2025-53396 DOS & CO SS1 安全漏洞 — SS1 7.8 -2025-08-28
CVE-2025-43729 Dell ThinOS 10 安全漏洞 — ThinOS 10 7.8 High2025-08-27
CVE-2025-30063 Excessive permissions on configuration files containing database logins and passwords — CGM CLININET 7.1AIHighAI2025-08-27
CVE-2025-43759 Liferay Portal和Liferay DXP 安全漏洞 — Portal 3.8AILowAI2025-08-22
CVE-2025-38742 Dell iDRAC Service Module 安全漏洞 — iDRAC Service Module (iSM) 5.3 Medium2025-08-21
CVE-2025-1139 IBM Edge Application Manager incorrect permissions — Edge Application Manager 6.1 Medium2025-08-20
CVE-2025-5819 Incorrect Permission Assignment for Critical Resource in GitLab — GitLab 5.0 Medium2025-08-13
CVE-2025-41659 CODESYS Control PKI Exposure Enables Remote Certificate Access — Control RTE (SL) 8.3 High2025-08-04
CVE-2025-46093 Liquidfiles 安全漏洞 — LiquidFiles 9.9 Critical2025-08-04

Vulnerabilities classified as CWE-732 (关键资源的不正确权限授予) represent 443 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.