CVE-2026-2026
A vulnerability has been identified where weak file permissions in the Nessus Agent directory on Windows hosts could allow unauthorized access, potentially permitting Denial of Service (DoS) attacks.
CVE-2025-36522
Incorrect default permissions for some Intel(R) Chipset Software before version 10.1.20266.8668 or later. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined w…
CVE-2025-36511
Incorrect default permissions for some Intel(R) Memory and Storage Tool before version 2.5.2 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high co…
CVE-2025-32453
Incorrect default permissions for some Intel(R) Graphics Driver software within Ring 2: Privileged Process may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity atta…
CVE-2025-31655
Incorrect default permissions for some Intel(R) Battery Life Diagnostic Tool within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity a…
CVE-2025-22849
Incorrect default permissions for the Intel(R) Optane(TM) PMem management software before versions CR_MGMT_01.00.00.3584, CR_MGMT_02.00.00.4052, CR_MGMT_03.00.00.0538 within Ring 3: User Applications may allow an escalation of privilege. Un…
CVE-2026-25931
vscode-spell-checker is a basic spell checker that works well with code and documents. Prior to v4.5.4, DocumentSettings._determineIsTrusted treats the configuration value cSpell.trustedWorkspace as the authoritative trust flag. The value d…
CVE-2020-37160
SprintWork 2.3.1 contains multiple local privilege escalation vulnerabilities through insecure file, service, and folder permissions on Windows systems. Local unprivileged users can exploit missing executable files and weak service configur…
CVE-2025-15343
Tanium addressed an incorrect default permissions vulnerability in Enforce.
CVE-2025-15341
Tanium addressed an incorrect default permissions vulnerability in Benchmark.
CVE-2025-15340
Tanium addressed an incorrect default permissions vulnerability in Comply.
CVE-2025-15339
Tanium addressed an incorrect default permissions vulnerability in Discover.
CVE-2025-15338
Tanium addressed an incorrect default permissions vulnerability in Partner Integration.
CVE-2025-15337
Tanium addressed an incorrect default permissions vulnerability in Patch.
CVE-2025-15336
Tanium addressed an incorrect default permissions vulnerability in Performance.
CVE-2025-15335
Tanium addressed an information disclosure vulnerability in Threat Response.
CVE-2025-15334
Tanium addressed an information disclosure vulnerability in Threat Response.
CVE-2025-15333
Tanium addressed an information disclosure vulnerability in Threat Response.
CVE-2020-37129
Memu Play 7.1.3 contains an insecure folder permissions vulnerability that allows low-privileged users to modify the MemuService.exe executable. Attackers can replace the service executable with a malicious file during system restart to gai…
CVE-2025-10314
Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation FREQSHIP-mini for Windows versions 8.0.0 to 8.0.2 allows a local attacker to execute arbitrary code with system privileges by replacing service executable files…