Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,510 vulnerabilities with CWE-276

CVE-2024-34474 HIGH

Clario <2024-04-11 - Privilege Escalation

CVE-2024-34455 HIGH

Buildroot <2024.02.2 - Info Disclosure

CVE-2024-4226 LOW

Octopus Server 2022.2.6729-2022.2.7934 - Unauthenticated User Enumeration and Permission Exposure

CVE-2024-34011 MEDIUM

Acronis Cyber Protect Cloud Agent (Windows) <37758 - Privilege Esca...

CVE-2024-2859 MEDIUM

Brocade SANnav < 2.3.0 - Incorrect Default Permissions for Root Account

CVE-2024-32368 HIGH

Agasta Sanketlife 2.0 Pocket 12-Lead ECG Monitor FW 3.0 - Denial of Service via Bluetooth Low Energy Component

CVE-2024-29967 MEDIUM

Brocade SANnav <2.31-2.3.0a - Info Disclosure

CVE-2024-29962 MEDIUM

Brocade SANnav <2.3.1-2.3.0a - Info Disclosure

CVE-2024-21116 HIGH

Oracle VM VirtualBox < 7.0.16 - Privilege Escalation via Incorrect Default Permissions

CVE-2024-21012 LOW

Oracle GraalVM and JDK - Unauthenticated Data Manipulation via Networking Component

CVE-2024-21004 LOW

Oracle GraalVM 20.3.13, 21.3.9 and Oracle Java SE 8u401 - Unauthenticated Incorrect Default Permissions in JavaFX

CVE-2024-21002 LOW

Oracle GraalVM 20.3.13, 21.3.9 and Oracle Java SE 8u401 - Unauthenticated Incorrect Default Permissions in JavaFX

CVE-2024-28056 CRITICAL

AWS Amplify CLI < 12.10.1 - Incorrect IAM Role Trust Policy Configuration

CVE-2024-21615 MEDIUM

Junos OS and Junos OS Evolved - Information Disclosure via NETCONF Traceoptions

CVE-2024-31442 HIGH

Redon Hub < 1.0.2 - Incorrect Default Permissions

CVE-2024-26574 HIGH

Wondershare Filmora 13.0.51 - Local Privilege Escalation via WSNativePushService.exe

CVE-2024-30415 CRITICAL

Huawei EMUI and HarmonyOS - Denial of Service via Window Management Module

CVE-2024-30977 HIGH

Secnet Security Network Intelligent AC Management System <1.02.040 ...

CVE-2024-27674 HIGH

Macro Expert <4.9.4 - Privilege Escalation

CVE-2024-0259 HIGH

Fortra Robot Schedule Enterprise Agent for Windows < 3.04 - Privilege Escalation via Service Executable Overwrite

CVE-2024-25958 MEDIUM

Dell Grab <= 5.0.4 - Authenticated Privilege Escalation via Weak Application Folder Permissions

CVE-2024-30204 LOW

Emacs < 29.3 - Incorrect Default Permissions for LaTeX Preview in Email Attachments

CVE-2024-22085 MEDIUM

Elspec G5 <1.1.4.15 - Info Disclosure

CVE-2024-25654 MEDIUM

AVSystem Unified Management Platform 23.07.0.16567~LTS - Sensitive Information Exposure via Log File Permissions

CVE-2024-1605 MEDIUM

BMC Control-M 9.0.20-9.0.20.237 and 9.0.21-9.0.21.200 - Unauthenticated DLL Hijacking via Insecure Directory Permissions

Previous Page 20 of 61 Next

Details

Vulnerabilities 1,510

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy