CWE-732: CWE-732

This vulnerability in certain Dahua embedded products allows attackers with normal user credentials to access admin-restricted data through specific H...

This vulnerability allows authenticated IBM i users with view authority to modify security attributes of underlying physical files without proper obje...

This vulnerability in IBM App Connect Enterprise Certified Container allows users with privileged access to running Pods to elevate their privileges b...

Docker Desktop for Windows installer has permission assignment vulnerabilities allowing low-privileged attackers to gain code execution. Attackers can...

This CVE describes a local privilege escalation vulnerability in Nagios XI where a maintenance script can be executed as root via sudo but includes a ...

This CVE describes a privilege escalation vulnerability in Axis devices where improper permissions and lack of input validation in ACAP configuration ...

CVE-2025-6779 is an improper permissions vulnerability in ACAP configuration files on Axis devices that could allow command injection and privilege es...

This CVE describes a local privilege escalation vulnerability in Acronis Cyber Protect products on Windows. Attackers with local access can exploit in...

This vulnerability allows authenticated local attackers with root-system privileges on Cisco IOS XR devices to bypass Secure Boot functionality and lo...

This CVE describes a local privilege escalation vulnerability in Check Point Harmony Endpoint Security Client for Windows. An attacker with existing l...

CVE-2026-1344 is an insecure file permissions vulnerability in Tanium's Enforce Recovery Key Portal that could allow unauthorized users to access sens...

An improper handling of the lsid field in sharded queries can cause MongoDB routers to crash when this field is provided in contexts where it's not ap...

This vulnerability in MySQL Server's optimizer component allows authenticated attackers with low privileges to cause a denial of service by crashing o...

A vulnerability in MySQL Server's optimizer component allows authenticated attackers with low privileges to cause denial of service by crashing or han...

In Metabase Enterprise Edition, users with impersonation permissions can access cached query results from other users, potentially viewing data they s...

This vulnerability in Oracle MySQL Server's optimizer component allows attackers with low-privileged network access to cause a denial of service (DoS)...

CVE-2024-39967 is an insecure permissions vulnerability in Aginode GigaSwitch v5 that allows attackers to access sensitive information via SCP command...

This vulnerability allows attackers with guest account access to read sensitive credential information from a specific file in UD-LT1 and UD-LT1/EX fi...

CVE-2025-49131 is a sandbox escape vulnerability in FastGPT's sandbox container that allows attackers to break out of the isolated execution environme...

This vulnerability in snapd versions before 2.62 allows malicious snaps with 'home' plug permissions to write arbitrary scripts to the user's $HOME/bi...

DriveLock agent versions 24.1-24.2.7 and 25.1-25.1.5 create directories and files with overly permissive access control lists (ACLs). This allows loca...

Hitachi Vantara Pentaho Business Analytics Server versions before 10.2.0.2, including 9.3.x and 8.3.x, have Karaf JMX beans enabled by default with in...

This vulnerability allows authenticated local administrators with read-only access in Cisco Intersight Virtual Appliance to escalate privileges to roo...

This vulnerability in screen allows any local user to connect to another user's screen session during a brief window when the PTY device has overly pe...

CVE-2024-11584 is a privilege escalation vulnerability in cloud-init where the default world-writable permissions on a systemd socket allow unprivileg...

A non-admin user can delete critical system files by exploiting a file deletion redirection vulnerability during video recording in Axis Camera Statio...

This vulnerability allows low-privileged remote attackers to access diagnostic data they shouldn't have permission to view due to incorrect permission...

CVE-2026-26095 is an incorrect permission assignment vulnerability in Owl opds 2.2.0.4 that allows attackers to manipulate files through crafted netwo...

This vulnerability in AION 2.0 allows attackers to modify critical system files because the root file system is not mounted as read-only. This affects...

A local privilege escalation vulnerability in Juniper's DHCP daemon allows any authenticated user, regardless of privileges, to connect to the managem...

This CVE describes a permissions bypass vulnerability in macOS where a standard user can view files from a disk image belonging to an administrator. T...

A macOS permissions vulnerability allows malicious applications with root privileges to modify system files. This affects macOS Ventura, Sonoma, and S...

This vulnerability in Fess Enterprise Search Server allows unauthorized local users to access sensitive temporary files due to insufficient file permi...

This vulnerability allows local attackers on Linux and Solaris systems to read sensitive data from Checkmk agent update packages due to incorrect file...

This CVE describes a permissions vulnerability in Apple operating systems that allows applications to modify protected areas of the file system. The i...

A local privilege escalation vulnerability in Siemens SCALANCE LPE9403 industrial routers allows non-privileged local attackers to access sensitive in...

A privilege escalation vulnerability in HPE Aruba Networking VIA client allows authenticated Windows users to overwrite arbitrary files with SYSTEM pr...

This vulnerability allows local attackers to access sensitive information due to insecure folder permissions in Acronis True Image for Windows. Users ...

This CVE allows local users on Unix systems to read Apache Portable Runtime (APR) named shared memory segments due to overly permissive permissions. T...

This vulnerability allows attackers to manipulate writeable configuration files in Salesforce Mulesoft Anypoint Code Builder due to incorrect permissi...

This vulnerability allows attackers to manipulate configuration files due to incorrect permission assignments in Salesforce Agentforce Vibes Extension...

This vulnerability allows remote attackers to access and download virtual products for free in Liferay Commerce by exploiting incorrect permission set...

CVE-2024-41954 is an information disclosure vulnerability in FOG Project where plaintext service account credentials are stored in a world-readable co...

A sandbox escape vulnerability in macOS allows malicious applications to bypass security restrictions and access system resources outside their design...

Dell PowerScale OneFS contains an incorrect permission assignment vulnerability that allows low-privileged local attackers to cause denial of service....

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.x have incorrect permissions on critical system resources. A local authenticated attacker could e...

This vulnerability in MySQL Server's replication component allows high-privileged attackers with network access to cause a denial of service by crashi...

This vulnerability in MySQL Server's optimizer component allows high-privileged attackers with network access to cause a denial of service (DoS) by cr...

This vulnerability in MySQL Server allows high-privileged attackers with network access to cause a denial of service (DoS) by crashing or hanging the ...

This vulnerability in MySQL Server's optimizer component allows high-privileged attackers with network access to cause a denial of service by crashing...