Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-732 (关键资源的不正确权限授予) — Vulnerability Class 444

444 vulnerabilities classified as CWE-732 (关键资源的不正确权限授予). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-30408 Acronis Cyber Protect Cloud Agent 安全漏洞 — Acronis Cyber Protect Cloud Agent 7.8 -2025-04-24
CVE-2025-0926 AXIS Camera Station Pro 安全漏洞 — AXIS Camera Station Pro 5.9 Medium2025-04-23
CVE-2025-1731 Zyxel USG FLEX 安全漏洞 — USG FLEX H series uOS firmware 7.8 High2025-04-22
CVE-2025-0758 Hitachi Vantara Pentaho Business Analytics Server - Incorrect Permission Assignment for Critical Resource — Pentaho Business Analytics Server 6.1 Medium2025-04-16
CVE-2024-13861 Secureworks Taegis Endpoint Agent 安全漏洞 — Taegis Endpoint Agent (Linux) 7.8 High2025-04-11
CVE-2025-20233 Incorrect permissions set by the “chmod“ and “makedirs“ Python functions in Splunk App for Lookup File Editing — Splunk App for Lookup File Editing 2.5 Low2025-03-26
CVE-2025-2098 Dylib Hijacking in Fast CAD Reader — Fast CAD Reader 7.8AIHighAI2025-03-26
CVE-2024-10209 Incorrect Permission Assignment in APROL file system — APROL 7.1AIHighAI2025-03-25
CVE-2025-27688 Dell ThinOS 安全漏洞 — Wyse Proprietary OS (Modern ThinOS) 7.8 High2025-03-18
CVE-2025-22454 Ivanti Secure Access Client 安全漏洞 — Secure Access Client 7.8 High2025-03-11
CVE-2025-1413 Dylib Hijacking in DaVinci Resolve — DaVinci Resolve 7.8 -2025-02-28
CVE-2025-1067 There is a code injection vulnerability in ArcGIS Pro — ArcGIS Pro 7.3 High2025-02-25
CVE-2025-27141 Metabase Enterprise Edition allows cached questions to leak data to impersonated users — metabase 4.3 -2025-02-24
CVE-2024-13813 Ivanti Secure Access Client 安全漏洞 — Secure Access Client 7.1 High2025-02-11
CVE-2025-23403 Siemens SIMATIC IPC DiagBase 安全漏洞 — SIMATIC IPC DiagBase 7.0 High2025-02-11
CVE-2025-0064 Improper Authorization in SAP BusinessObjects Business Intelligence platform (Central Management Console) — SAP BusinessObjects Business Intelligence platform (Central Management Console) 8.7 High2025-02-11
CVE-2024-45657 IBM Security Verify Access incorrect privilege assignment — Security Verify Access Appliance 5.0 Medium2025-02-04
CVE-2025-0374 Unprivileged access to system files — FreeBSD 7.1 -2025-01-30
CVE-2025-24527 Akamai Enterprise Application Access 安全漏洞 — Enterprise Application Access 8.0 High2025-01-29
CVE-2024-29869 Apache Hive: Credentials file created with non restrictive permissions — Apache Hive 6.5 -2025-01-28
CVE-2025-24481 FactoryTalk® View Site Edition - Incorrect Permission Assignment — FactoryTalk® View Site Edition 9.8 -2025-01-28
CVE-2024-46881 Gradle 安全漏洞 — Enterprise 7.1 High2025-01-26
CVE-2024-52328 ECOVACS lawnmowers and vacuums insecurely store audio warning files — Unspecified robots 2.3 Low2025-01-23
CVE-2025-0590 TECNO com.transsion.carlcare 安全漏洞 — com.transsion.carlcare 6.2 -2025-01-20
CVE-2024-38337 IBM Sterling Secure Proxy improper input validation — Sterling Secure Proxy 9.1 Critical2025-01-19
CVE-2025-21325 Windows Secure Kernel Mode Elevation of Privilege Vulnerability — Windows 10 Version 21H2 7.8 High2025-01-17
CVE-2024-11497 Phoenix Contact: CHARX-SEC3xxx Charge controllers vulnerable to privilege escalation — CHARX SEC-3000 8.8 High2025-01-14
CVE-2025-0066 Information Disclosure vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform (Internet Communication Framework) — SAP NetWeaver AS for ABAP and ABAP Platform (Internet Communication Framework) 9.9 Critical2025-01-14
CVE-2024-47475 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 5.0 Medium2025-01-06
CVE-2024-49385 Acronis True Image 安全漏洞 — Acronis True Image 7.5 -2025-01-02

Vulnerabilities classified as CWE-732 (关键资源的不正确权限授予) represent 444 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.