Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-732 (关键资源的不正确权限授予) — Vulnerability Class 444

444 vulnerabilities classified as CWE-732 (关键资源的不正确权限授予). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-8039 TECNO com.afmobi.boomplayer 安全漏洞 — com.afmobi.boomplayer 9.8 -2024-09-14
CVE-2024-41171 Siemens SINUMERIK 安全漏洞 — SINUMERIK 828D V4 8.8 High2024-09-10
CVE-2023-49582 Apache Portable Runtime (APR): Unexpected lax shared memory permissions — Apache Portable Runtime (APR) 3.3AILowAI2024-08-26
CVE-2022-43915 IBM App Connect Enterprise Certified Container — App Connect Enterprise Certified Container 6.8 Medium2024-08-24
CVE-2024-7986 Rockwell Automation ThinManager® ThinServer™ Information Disclosure — ThinManager® ThinServer™ 7.5AIHighAI2024-08-23
CVE-2024-5930 VIPRE Advanced Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability — Advanced Security 7.8AIHighAI2024-08-21
CVE-2024-7513 Rockwell Automation FactoryTalk® View Site Edition Code Execution Vulnerability via File Permissions — FactoryTalk View Site Edition 7.8AIHighAI2024-08-14
CVE-2024-5915 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability — GlobalProtect App 7.8AIHighAI2024-08-14
CVE-2024-6619 Incorrect Permission Assignment for Critical Resource in Ocean Data Systems Dream Report — Dream Report 2023 7.8AIHighAI2024-08-13
CVE-2024-41820 Cluster-level privilege escalation in kubean — kubean 6.0 Medium2024-08-05
CVE-2024-41954 FOG Weak file permissions — fogproject 5.3 Medium2024-07-31
CVE-2024-31202 Plug and Track Thermoscan IP 安全漏洞 — Thermoscan IP 7.8 High2024-07-31
CVE-2024-1724 snapd allows $HOME/bin symlink — snap 6.3 Medium2024-07-25
CVE-2024-5618 Broken Access Control in PruvaSoft Informatics' Apinizer Management Console — Apinizer Management Console 9.9 Critical2024-07-18
CVE-2024-6435 Rockwell Automation Privilege Escalation Vulnerability in Pavilion8® — Pavilion8® 7.1AIHighAI2024-07-16
CVE-2024-6780 Improper permission control in com.android.server.telecom — com.android.server.telecom 6.2AIMediumAI2024-07-16
CVE-2024-20456 Cisco IOS XR 安全漏洞 — Cisco IOS XR Software 6.7 Medium2024-07-10
CVE-2024-28827 Privilege escalation in Windows agent — Checkmk 8.8 High2024-07-10
CVE-2024-39875 Siemens SINEMA Remote Connect Server 安全漏洞 — SINEMA Remote Connect Server 4.3 Medium2024-07-09
CVE-2024-5163 Improper permission settings in com.transsion.carlcare — com.transsion.carlcare 9.1AICriticalAI2024-06-17
CVE-2024-37369 Rockwell Automation FactoryTalk® View SE Local Privilege Escalation Vulnerability via Local File Permissions — FactoryTalk® View SE 8.8AIHighAI2024-06-14
CVE-2024-3668 PowerPack Pro for Elementor <= 2.10.17 - Authenticated (Contributor+) Privilege Escalation — PowerPack Pro for Elementor 8.8 High2024-06-08
CVE-2024-30369 A10 Thunder ADC Incorrect Permission Assignment Local Privilege Escalation Vulnerability — Thunder ADC 7.8AIHighAI2024-06-06
CVE-2024-21902 QTS, QuTS hero — QTS 6.4 Medium2024-05-21
CVE-2023-5936 Unsafe temporary data privileges on Unix systems in Arc before v1.6.0 — Arc 7.8 High2024-05-15
CVE-2024-27108 Non privileged access to critical file vulnerability in GE HealthCare EchoPAC products — EchoPAC Software Only 6.8 Medium2024-05-14
CVE-2024-1486 Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices — Venue 7.4 High2024-05-14
CVE-2023-35841 WinFlash Driver Permissions Issue — WinFlash Driver 7.8 High2024-05-14
CVE-2024-33499 Siemens 多款产品 安全漏洞 — SIMATIC RTLS Locating Manager 9.1 Critical2024-05-14
CVE-2024-30208 Siemens 多款产品 安全漏洞 — SIMATIC RTLS Locating Manager 6.3 Medium2024-05-14

Vulnerabilities classified as CWE-732 (关键资源的不正确权限授予) represent 444 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.