CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,487 vulnerabilities with CWE-276
CVE-2026-0539 HIGH
Local Privilege Escalation in pcvisit service client
CVE-2026-6823 HIGH
HKUDS OpenHarness Insecure Default Remote Channel Allowlist
CVSS 8.2
CVE-2026-6819 HIGH
HKUDS OpenHarness Plugin Management Command Exposure
CVSS 8.8
CVE-2026-39454 HIGH
SKYSEA Client View <=21.200.07j - Privilege Escalation
CVSS 7.8
CVE-2026-30811 MEDIUM
Missing Authorization in Configuration Ajax Endpoint leads to Information Disclosure
CVSS 6.5
CVE-2026-21013 MEDIUM
Samsung Galaxy Wearable <2.2.68.26 - Info Disclosure
CVSS 5.5
CVE-2026-25203 HIGH
Samsung Electronics MagicINFO 9 Server < 21.1091.1 - Privilege Escalation
CVSS 7.8
CVE-2026-21765 HIGH
HCL BigFix Platform is affected by insecure permissions on private cryptographic keys
CVSS 8.8
CVE-2026-34450 MEDIUM
Claude SDK for Python: Insecure Default File Permissions in Local Filesystem Memory Tool
CVSS 4.4
CVE-2026-32983 MEDIUM
SSL/TLS Renegotiation DoS in Wazuh Manager authd service
CVSS 5.8
CVE-2026-0748 MEDIUM
Access bypass in Drupal 7 i18n_node translation UI
CVSS 4.3
CVE-2026-32680 HIGH
RATOC RAID Monitoring Manager for Windows <2.00.009.260220 - Privilege Escalation
CVSS 7.8
CVE-2026-24063 HIGH
World-writable uninstall script executed as root in Arturia Software Center
CVSS 8.2
CVE-2026-3315 MEDIUM
ASSA ABLOY Visionline <1.33 - Privilege Escalation
CVE-2026-26131 HIGH
.NET - Privilege Escalation
CVSS 7.8
CVE-2026-28267 MEDIUM
i-Filter - Privilege Escalation
CVSS 5.5
CVE-2026-28727 HIGH
Acronis Cyber Protect 17 - Privilege Escalation
CVSS 7.8
CVE-2026-28717 MEDIUM
Acronis Cyber Protect 17 - Privilege Escalation
CVSS 5.0
CVE-2026-26034 HIGH
UPS MUMC 01.06.0001 - Privilege Escalation
CVSS 7.8
CVE-2026-21423 MEDIUM
Dell PowerScale OneFS <9.10.1.6/9.11.0.0-9.12.0.1 - Privilege Escal...
CVSS 6.7
CVE-2026-2915 HIGH
HP System Event Utility <3.2.16 - DoS
CVSS 7.1
CVE-2026-27653 MEDIUM
Soliton Systems K.K. Installers - Privilege Escalation
CVSS 6.7
CVE-2026-23703 HIGH
FinalCode Client - Privilege Escalation
CVSS 7.8
CVE-2026-2026 MEDIUM
Nessus Agent - Privilege Escalation
CVSS 6.1
CVE-2026-25931 HIGH
vscode-spell-checker <4.5.4 - Info Disclosure
CVSS 7.8
Details
Vulnerabilities 1,487
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits