VYPR

CWE-732

Incorrect Permission Assignment for Critical Resource

ClassDraftLikelihood: High

Description

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

When a resource is given a permission setting that provides access to a wider range of actors than required, it could lead to the exposure of sensitive information, or the modification of that resource by unintended parties. This is especially dangerous when the resource is related to program configuration, execution, or sensitive user data. For example, consider a misconfigured storage account for the cloud that can be read or written by a public or anonymous user.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-1 · CAPEC-122 · CAPEC-127 · CAPEC-17 · CAPEC-180 · CAPEC-206 · CAPEC-234 · CAPEC-60 · CAPEC-61 · CAPEC-62 · CAPEC-642

CVEs mapped to this weakness (623)

page 18 of 32
  • CVE-2026-42937MedMay 13, 2026
    risk 0.42cvss 6.5epss 0.00

    Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell (tmsh) arp and ndp commands, and in BIG-IP iControl REST. These vulnerabilities may allow an authenticated attacker to view adjacent network information.  Note: Software versions which…

  • CVE-2026-41959MedMay 13, 2026
    risk 0.42cvss 6.5epss 0.00

    Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell (tmsh) network diagnostics commands and in BIG-IP iControl REST. These vulnerabilities may allow an authenticated attacker to view the network status of destination systems.  Note: Software…

  • CVE-2026-40462MedMay 13, 2026
    risk 0.42cvss 6.5epss 0.00

    Incorrect permission assignment vulnerabilities exist in iControl REST and TMOS shell (tmsh) undisclosed command which may allow an authenticated attacker to view sensitive information.  Note: Software versions which have reached End of Technical Support (EoTS) are not…

  • CVE-2025-41712MedMar 10, 2026
    risk 0.42cvss 6.5epss 0.00

    An unauthenticated remote attacker who tricks a user to upload a manipulated HTML file can get access to sensitive information on the device. This is a result of incorrect permission assignment for the web server.

  • CVE-2025-12801MedMar 4, 2026
    risk 0.42cvss 6.5epss 0.00

    A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or…

  • CVE-2024-57068HigFeb 5, 2025
    risk 0.42cvss 7.5epss 0.00

    A prototype pollution in the lib.mutateMergeDeep function of @tanstack/form-core v0.35.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.

  • CVE-2025-0374MedJan 30, 2025
    risk 0.42cvss 6.5epss 0.00

    When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode of the input file, and is world-readable. This applies to files that would normally have restricted…

  • CVE-2024-39967MedJan 15, 2025
    risk 0.42cvss 6.5epss 0.00

    Insecure permissions in Aginode GigaSwitch v5 allows attackers to access sensitive information via using the SCP command.

  • CVE-2024-45841MedDec 5, 2024
    risk 0.42cvss 6.5epss 0.00

    Incorrect permission assignment for critical resource issue exists in UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier. If an attacker with the guest account of the affected products accesses a specific file, the information containing…

  • CVE-2018-6040MedSep 25, 2018
    risk 0.42cvss 6.5epss 0.01

    Insufficient policy enforcement in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially bypass content security policy via a crafted HTML page.

  • CVE-2018-13122MedJul 3, 2018
    risk 0.42cvss 6.5epss 0.01

    onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to delete arbitrary files via the Delete File(s) screen, as demonstrated by a ?i=var/www/html/&f=123.php&p=edit&p=deletefile URI.

  • CVE-2018-1354MedJun 27, 2018
    risk 0.42cvss 6.5epss 0.02

    An improper access control vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions, FortiAnalyzer 6.0.0, 5.6.5 and below versions allows a regular user edit the avatar picture of other users with arbitrary content.

  • CVE-2018-11053MedJun 26, 2018
    risk 0.42cvss 6.5epss 0.00

    Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1.0, v3.2.0, when started, changes the default file permission of the hosts file of the host operating system (/etc/hosts) to world writable. A malicious low privileged operating…

  • CVE-2018-1000510MedJun 26, 2018
    risk 0.42cvss 6.5epss 0.01

    WP Image Zoom version 1.23 contains a Incorrect Access Control vulnerability in AJAX settings that can result in allows anybody to cause denial of service. This attack appear to be exploitable via Can be triggered intentionally (or unintentionally via CSRF) by any logged in…

  • CVE-2018-12642HigJun 22, 2018
    risk 0.42cvss 7.5epss 0.01

    Froxlor through 0.9.39.5 has Incorrect Access Control for tickets not owned by the current user.

  • CVE-2018-10520MedApr 27, 2018
    risk 0.42cvss 6.5epss 0.01

    In CMS Made Simple (CMSMS) through 2.2.7, the "module remove" operation in the admin dashboard contains an arbitrary file deletion vulnerability that can cause DoS, exploitable by an admin user, because the attacker can remove all lib/ files in all directories.

  • CVE-2018-10518MedApr 27, 2018
    risk 0.42cvss 6.5epss 0.01

    In CMS Made Simple (CMSMS) through 2.2.7, the "file delete" operation in the admin dashboard contains an arbitrary file deletion vulnerability that can cause DoS, exploitable by an admin user, because the attacker can remove all lib/ files in all directories.

  • CVE-2018-1000165HigApr 18, 2018
    risk 0.42cvss 7.5epss 0.01

    LightSAML version prior to 1.3.5 contains a Incorrect Access Control vulnerability in signature validation in readers in src/LightSaml/Model/XmlDSig/ that can result in impersonation of any user from Identity Provider. This vulnerability appears to have been fixed in 1.3.5 and…

  • CVE-2018-1000080MedMar 13, 2018
    risk 0.42cvss 6.5epss 0.01

    Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any plugins as being a normal user. This attack appear to be exploitable via By knowing how the requisition is made, and sending it as a normal user, the…

  • CVE-2017-8158MedNov 22, 2017
    risk 0.42cvss 6.5epss 0.00

    FusionCompute V100R005C00 and V100R005C10 have an improper authorization vulnerability due to improper permission settings for a certain file on the host machine. An authenticated attacker could create a large number of virtual machine (VM) processes to exhaust system resources.…