CVE-2025-20233

LOW Year: 2025
CVSS v3 Score
2.5
Low
Weakness Type
CWE-732
View all →

Vulnerability Description

In the Splunk App for Lookup File Editing versions below 4.0.5, a script in the app used the `chmod` and `makedirs` Python functions in a way that resulted in overly broad read and execute permissions. This could lead to improper access control for a low-privileged user.

Related Vulnerabilities

CVE-2018-4238

LOW
CVSS:2.4(Low)

An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection m...

CWE-7322018

CVE-2018-7924

LOW
CVSS:2.4(Low)

Anne-AL00 Huawei phones with versions earlier than 8.0.0.151(C00) have an information leak vulnerability. Due to improper permission settings for specific commands, attackers who can connect to a mobi...

CWE-7322018

CVE-2012-1160

LOW
CVSS:2.7(Low)

Moodle before 2.2.2 has a permission issue in Forum Subscriptions where unenrolled users can subscribe/unsubscribe via mod/forum/index.php

CWE-7322012

CVE-2016-11077

LOW
CVSS:2.7(Low)

An issue was discovered in Mattermost Server before 3.0.0. It has a superfluous API in which the System Admin can change the account name and e-mail address of an LDAP account.

CWE-7322016

CVE-2018-12217

LOW
CVSS:2.3(Low)

Insufficient access control in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5...

CWE-7322018

CVE-2023-32114

LOW
CVSS:2.7(Low)

SAP NetWeaver (Change and Transport System) - versions 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, allows an authenticated user with admin privileges to maliciously run a benchmark program ...

CWE-7322023