VYPR

CWE-732

Incorrect Permission Assignment for Critical Resource

ClassDraftLikelihood: High

Description

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

When a resource is given a permission setting that provides access to a wider range of actors than required, it could lead to the exposure of sensitive information, or the modification of that resource by unintended parties. This is especially dangerous when the resource is related to program configuration, execution, or sensitive user data. For example, consider a misconfigured storage account for the cloud that can be read or written by a public or anonymous user.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-1 · CAPEC-122 · CAPEC-127 · CAPEC-17 · CAPEC-180 · CAPEC-206 · CAPEC-234 · CAPEC-60 · CAPEC-61 · CAPEC-62 · CAPEC-642

CVEs mapped to this weakness (623)

page 24 of 32
  • CVE-2024-54159MedNov 29, 2024
    risk 0.27cvss 4.1epss 0.00

    stalld through 1.19.7 allows local users to cause a denial of service (file overwrite) via a /tmp/rtthrottle symlink attack.

  • CVE-2018-1750MedOct 8, 2018
    risk 0.27cvss 4.2epss 0.01

    IBM Security Key Lifecycle Manager 3.0 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 148511.

  • CVE-2018-1370MedMay 29, 2018
    risk 0.27cvss 4.2epss 0.01

    IBM Security Guardium Big Data Intelligence (SonarG) 3.1 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 137769.

  • CVE-2017-1624MedApr 4, 2018
    risk 0.27cvss 4.2epss 0.01

    IBM QRadar 7.3 and 7.3.1 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 133122.

  • CVE-2017-1459MedJan 10, 2018
    risk 0.27cvss 4.2epss 0.01

    IBM Security Access Manager Appliance 8.0.0 and 9.0.0 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 128378.

  • CVE-2026-32315medJun 22, 2026
    risk 0.26cvss epss 0.03

    # Security Advisory: World-Readable Configuration File Exposes Admin Password Hash in motionEye ## Summary motionEye v0.43.1 and prior versions create the configuration file `/etc/motioneye/motion.conf` with `644` permissions (`-rw-r--r--`), making it readable by any local…

  • CVE-2018-11078MedSep 11, 2018
    risk 0.26cvss 4.0epss 0.01

    Dell EMC VPlex GeoSynchrony, versions prior to 6.1, contains an Insecure File Permissions vulnerability. A remote authenticated malicious user could read from VPN configuration files on and potentially author a MITM attack on the VPN traffic.

  • CVE-2016-8637MedAug 1, 2018
    risk 0.26cvss 5.0epss 0.00

    A local information disclosure issue was found in dracut before 045 when generating initramfs images with world-readable permissions when 'early cpio' is used, such as when including microcode updates. Local attacker can use this to obtain sensitive information from these files,…

  • CVE-2018-1315LowApr 5, 2018
    risk 0.24cvss 3.7epss 0.02

    In Apache Hive 2.1.0 to 2.3.2, when 'COPY FROM FTP' statement is run using HPL/SQL extension to Hive, a compromised/malicious FTP server can cause the file to be written to an arbitrary location on the cluster where the command is run from. This is because FTP client code in…

  • CVE-2026-34450MedMar 31, 2026
    risk 0.22cvss 4.4epss 0.00

    The Claude SDK for Python provides access to the Claude API from Python applications. From version 0.86.0 to before version 0.87.0, the local filesystem memory tool in the Anthropic Python SDK created memory files with mode 0o666, leaving them world-readable on systems with a…

  • CVE-2016-9604MedJul 11, 2018
    risk 0.22cvss 4.4epss 0.00

    It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as '.dns_resolver' in RHEL-7 or '.builtin_trusted_keys' upstream, by joining it as its session keyring. This allows root to bypass module signature verification by…

  • CVE-2026-35367LowApr 22, 2026
    risk 0.21cvss 3.3epss 0.00

    The nohup utility in uutils coreutils creates its default output file, nohup.out, without specifying explicit restricted permissions. This causes the file to inherit umask-based permissions, typically resulting in a world-readable file (0644). In multi-user environments, this…

  • CVE-2026-28264LowApr 8, 2026
    risk 0.21cvss 3.3epss 0.00

    Dell PowerProtect Agent Service, version(s) prior to 20.1, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.

  • CVE-2025-68462LowDec 18, 2025
    risk 0.21cvss 3.2epss 0.00

    Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases.

  • CVE-2025-52992LowJun 27, 2025
    risk 0.21cvss 3.2epss 0.00

    The Nix, Lix, and Guix package managers fail to properly set permissions when a derivation build fails. This may allow arbitrary processes to modify the content of a store outside of the build sandbox. This affects Nix before 2.24.15, 2.26.4, 2.28.4, and 2.29.1; Lix before…

  • CVE-2024-6780LowJul 16, 2024
    risk 0.21cvss 3.3epss 0.00

    Improper permission control in the mobile application (com.android.server.telecom) may lead to user information security risks.

  • CVE-2024-28745LowMar 18, 2024
    risk 0.21cvss 3.3epss 0.00

    Improper export of Android application components issue exists in 'ABEMA' App for Android prior to 10.65.0 allowing another app installed on the user's device to access an arbitrary URL on 'ABEMA' App for Android via Intent. If this vulnerability is exploited, an arbitrary…

  • CVE-2023-6883MedJan 11, 2024
    risk 0.21cvss 4.3epss 0.00

    The Easy Social Feed plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX functions in all versions up to, and including, 6.5.2. This makes it possible for authenticated attackers, with subscriber-level access…

  • CVE-2012-0433LowJun 8, 2018
    risk 0.21cvss 3.3epss 0.00

    The install-chef-suse.sh script shipped with crowbar before 2012-10-02 is creating files containing confidential data with insecure permissions, allowing local users to read confidential data.

  • CVE-2017-1699LowJan 4, 2018
    risk 0.21cvss 3.3epss 0.00

    IBM MQ Managed File Transfer Agent 8.0 and 9.0 sets insecure permissions on certain files it creates. A local attacker could exploit this vulnerability to modify or delete data contained in the files with an unknown impact. IBM X-Force ID: 134391.