Lucene search
K

469 matches found

EUVD
EUVD
added 2026/07/05 2:38 p.m.10 views

EUVD-2026-41765

Incorrect Permission Assignment for Critical Resource, Improper Access Control vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus-Parental-Control allows DNS Spoofing. This issue affects Pardus-Parental-Control: from =0.5.1 before 0.7.0...

8.8CVSS5.9AI score0.00101EPSS
Exploits0References1
NVD
NVD
added 2026/07/03 1:17 p.m.7 views

CVE-2026-44268

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect permission Assignment for critical resource vulnerability. A hi...

4.4CVSS0.00104EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/07/03 12:0 a.m.14 views

PT-2026-55527

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain versions 7.7.1.0 through 8.6 Dell PowerProtect Data Domain versions 8.6.1.0 through 8.6.1.10 Dell PowerProtect Data Domain versions 8.3.1.0 through 8.3.1.30 Dell PowerProtect Data Domain versions 7.13.1.0 through...

4.4CVSS6AI score0.00104EPSS
Exploits0References7
CVE
CVE
added 2026/06/25 2:47 p.m.14 views

CVE-2026-9651

Technical details about CVE-2026-9651 are not provided in the supplied documents. Public sources summarize CWE-732; monitor for updates from NVD, CVE listings, and vuln enrichment feeds.

6.7CVSS5.8AI score0.00106EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/25 2:47 p.m.6 views

CVE-2026-9651

CWE-732 Incorrect Permission Assignment for Critical Resource vulnerability that could cause unauthorized disclosure of password hashes and potential account compromise when an attacker with privileged local access reads improperly protected system files...

6.7CVSS5.8AI score0.00106EPSS
Exploits0References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.14 views

Tridium Niagara Incorrect Permission Assignment for Critical Resource (CVE-2025-3936)

Incorrect Permission Assignment for Critical Resource vulnerability in Tridium Niagara Framework on Windows, Tridium Niagara Enterprise Security on Windows allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Niagara Framework: before 4.14.2, before 4.15.1,...

9.8CVSS7.6AI score0.00366EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/10 10:15 p.m.6 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource through improper handling of caveat structures containing nested lists in the caching process. An attacker can gain unauthorized access to protected resources by crafting requests th...

3.1CVSS5.3AI score0.00276EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/10 10:15 p.m.5 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource through improper handling of caveat structures containing nested lists in the caching process. An attacker can gain unauthorized access to protected resources by crafting requests th...

3.1CVSS5.3AI score0.00276EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.12 views

PT-2026-52483

Name of the Vulnerable Software and Affected Versions Schneider Electric Saitel DR affected versions not specified Schneider Electric EasyLogic T150 affected versions not specified Description An incorrect permission assignment for a critical resource allows an attacker with privileged local acce...

6.7CVSS5.8AI score0.00106EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/05 7:47 p.m.10 views

CVE-2026-6499

Incorrect Permission Assignment for Critical Resource vulnerability in ILM Informatique OpenConcerto allows Replace Binaries. This issue affects OpenConcerto: 1.7.5...

2.4CVSS5.4AI score0.00096EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/06/01 8:34 a.m.14 views

Multiple vulnerabilities in ServerView Agents for Windows

Overview ServerView Agents for Windows provided by Fsas Technologies Inc. is server management software. ServerView Agents for Windows contains multiple vulnerabilities listed below. Incorrect permission assignment for critical resource CWE-732 - CVE-2026-27788 Privilege chaining CWE-268 -...

8.5CVSS7.2AI score0.00097EPSS
Exploits0References6
CVE
CVE
added 2026/05/15 9:30 p.m.23 views

CVE-2026-45316

Summary (Open WebUI CVE-2026-45316): A permission check bug in the POST /api/v1/notes/{id}/pin endpoint allows read-only users to toggle a note’s is_pinned state because it checks read permission instead of write. The issue occurs in Open WebUI prior to 0.9.3 and is fixed in 0.9.3. The vulnerabil...

3.5CVSS5.8AI score0.00218EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2026/05/04 2:8 p.m.26 views

CVE-2026-6499

CVE-2026-6499 affects OpenConcerto 1.7.5. The issue is described as an Incorrect Permission Assignment for Critical Resource vulnerability that could allow Replace Binaries. CVSS v4.0 metrics: AV:L, AC:L, PR:L, UI:P, S:U, C:N/I:N/A:N with VU: none/low; base score 2.4 (LOW). Exploitation status is...

2.4CVSS5.8AI score0.00096EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/04 2:8 p.m.6 views

CVE-2026-6499

Incorrect Permission Assignment for Critical Resource vulnerability in ILM Informatique OpenConcerto allows Replace Binaries. This issue affects OpenConcerto: 1.7.5...

2.4CVSS5.8AI score0.00096EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/04 2:8 p.m.33 views

CVE-2026-6499

Incorrect Permission Assignment for Critical Resource vulnerability in ILM Informatique OpenConcerto allows Replace Binaries. This issue affects OpenConcerto: 1.7.5...

2.4CVSS0.00096EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/16 2:0 a.m.30 views

CVE-2026-1880

An Incorrect Permission Assignment for Critical Resource vulnerability in the ASUS DriverHub update process allows privilege escalation due to improper protection of required execution resources during the validation phase, permitting a local user to make unprivileged modifications. This allows t...

5.4CVSS0.00139EPSS
Exploits1References1
Snyk
Snyk
added 2026/04/15 8:23 p.m.12 views

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource in the Correlations feature due to a backward compatibility condition that allows records with orgid=0 to be accessed across organizations. An attacker with datasource management...

3.8CVSS5.8AI score0.00204EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/08 11:24 a.m.9 views

EUVD-2026-20449

Dell PowerProtect Agent Service, versions prior to 20.1, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure...

3.3CVSS5.9AI score0.0013EPSS
Exploits0References1
CVE
CVE
added 2026/04/08 11:24 a.m.23 views

CVE-2026-28264

Dell PowerProtect Agent Service (versions prior to 20.1) is affected by an Incorrect Permission Assignment for Critical Resource vulnerability. A low-privileged attacker with local access could trigger information exposure. Affected component: Dell PowerProtect Agent Service. Root cause: incorrec...

5.5CVSS5.9AI score0.0013EPSS
Exploits0References1Affected Software1
Snyk
Snyk
added 2026/04/01 9:15 p.m.3 views

Incorrect Permission Assignment for Critical Resource

Overview anthropic is a The official Python library for the anthropic API Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource in the local filesystem memory tool due to files being created with overly permissive permissions. An attacker can...

4.8CVSS5.9AI score0.00122EPSS
Exploits0References3
Rows per page
Query Builder