Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,510 vulnerabilities with CWE-276

CVE-2024-53841 HIGH

startListeningForDeviceStateChanges - Privilege Escalation

CVE-2024-53840 HIGH

Google Android - Biometric Bypass Privilege Escalation

CVE-2024-53835 HIGH

Google Android - Biometric Bypass Privilege Escalation

CVE-2024-11624 HIGH

Undeclared Permission - Privilege Escalation

CVE-2024-43769 HIGH

Android - Local Privilege Escalation via PackageManagerService Logic Error

CVE-2024-55950 HIGH

Tabby <1.0.216 - Privilege Escalation

CVE-2024-12903 HIGH

Evoko Home <2.7.4 - Privilege Escalation

CVE-2024-45819 MEDIUM

Xen >= 4.8.0 - Information Exposure via Uninitialized Memory in PVH Guest ACPI Table Construction

CVE-2024-4229 HIGH

Edgecross Basic Software - Info Disclosure/DoS

CVE-2024-49202 HIGH

Keyfactor Command <12.5.0 - Incorrect Access Control

CVE-2024-38499 HIGH

CA Client Automation - Info Disclosure

CVE-2024-12564 MEDIUM

Open Design Alliance CDE inWEB SDK <2025.3 - Info Disclosure

CVE-2024-44224 HIGH

macOS < 13.7.2, < 14.7.2, < 15.2 - Unprotected User Data Exposure via Incorrect Default Permissions

CVE-2024-11872 HIGH

Epic Games Launcher - Privilege Escalation

CVE-2024-9845 HIGH

Ivanti Automation < 2024.4.0.1 - Authenticated Local Privilege Escalation via Insecure Permissions

CVE-2024-8496 HIGH

Ivanti Workspace Control <10.18.40.0 - Privilege Escalation

CVE-2024-11598 HIGH

Ivanti Application Control < 2023.3 - Incorrect Default Permissions

CVE-2024-11597 HIGH

Ivanti Performance Manager < 2023.3 - Authenticated Local Privilege Escalation via Insecure Permissions

CVE-2024-10251 HIGH

Ivanti Security Controls <2024.4.1 - Privilege Escalation

CVE-2024-45494 CRITICAL

MSA FieldServer Gateway <6.5.2 - Info Disclosure

CVE-2024-54751 CRITICAL

COMFAST CF-WR630AX v2.7.0.2 - Info Disclosure

CVE-2024-54747 CRITICAL

WAVLINK WN531P3 202383 - Hardcoded Password in /etc/shadow

CVE-2024-54745 CRITICAL

WAVLINK WN701AE M01AE_V240305 - Hardcoded Root Password in /etc/shadow

CVE-2024-46624 HIGH

InfoDom Performa 365 <4.0.1 - Privilege Escalation

CVE-2024-54131 HIGH

Kolide Agent <1.5.3 - Privilege Escalation

Previous Page 13 of 61 Next

Details

Vulnerabilities 1,510

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy