CWE-732

CVE-2019-8342

February 26, 2023 by

A Local Privilege Escalation in libqcocoa.dylib in Foxit Reader 3.1.0.0111 on macOS has been discovered due to an incorrect permission set.

CVE-2019-8256

February 26, 2023 by

ColdFusion versions Update 6 and earlier have an insecure inherited permissions of default installation directory vulnerability. Successful exploitation could lead to privilege escalation.

CVE-2019-8283

February 26, 2023 by

Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have ‘HttpOnly’ flag. This allows malicious javascript to steal it.

CVE-2019-8071

February 26, 2023 by

Adobe Download Manager versions 2.0.0.363 have an insecure file permissions vulnerability. Successful exploitation could lead to privilege escalation.

CVE-2019-7958

February 26, 2023 by

Creative Cloud Desktop Application versions 4.6.1 and earlier have an insecure inherited permissions vulnerability. Successful exploitation could lead to privilege escalation.

An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Due to setting of insecure permissions, a malicious app could potentially succeed in retrieving video clips or still images that have been cached for clip sharing. (The Bosch Smart Home App is not affected. iOS Apps are not affected.)