Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,512 vulnerabilities with CWE-276

CVE-2021-44905 HIGH

Fortessa FTBTLD Smart Lock >=12-13-2022 - Unauthenticated Lock Disable via Bluetooth Lock Name Edit

CVE-2021-44751 MEDIUM

F-Secure SAFE < 18.5 - Unauthenticated USSD Code Injection via Malicious Website

CVE-2021-22571 MEDIUM

sa360_webquery_to_bigquery_exporter < 1.0.3 - Unauthenticated Local File Read via Temporary Report Staging

CVE-2021-39694 HIGH

Android 12 - Local Privilege Escalation via RoleParser Permissions Bypass

CVE-2021-44216 MEDIUM

CFEngine < 3.15.5 and 3.18.x < 3.18.1 - Unauthorized Local File Access via Insecure Log File Permissions

CVE-2021-44215 MEDIUM

CFEngine < 3.15.5 - Insecure Default Permissions

CVE-2021-40059 MEDIUM

Huawei EMUI and Magic UI - Incorrect Default Permissions in Wi-Fi Module

CVE-2021-40053 CRITICAL

Huawei EMUI - Incorrect Default Permissions in Nearby Module

CVE-2021-40049 HIGH

Huawei EMUI - Unauthorized Sensitive Information Disclosure via PMS Module

CVE-2021-3981 LOW

GRUB2 < 2.06 - Unprotected Configuration File Permissions

CVE-2021-32006 MEDIUM

Secomea GateManager <9.6.621421014 - Privilege Escalation

CVE-2021-20269 MEDIUM

kexec-tools < 2.0.21-8 - Unauthenticated Kernel Information Leak via Log File Permissions

CVE-2021-38268 MEDIUM

Liferay Portal/DXP <7.4 - Privilege Escalation

CVE-2021-41652 HIGH

BatFlat CMS 1.3.6 - Insecure Default Permissions in Database File

CVE-2021-37103 MEDIUM

Huawei EMUI and Magic UI - Incorrect Default Permissions in Wallet Apps

CVE-2021-45083 HIGH

Cobbler < 3.3.1 - Unauthenticated Sensitive Information Exposure via World-Readable Configuration Files

CVE-2021-3948 MEDIUM

mig-controller - Incorrect Default Permissions via Cluster Namespace Handling

CVE-2021-3155 LOW

snapd < 2.54.3 - Unprotected User Data Exposure via Home Directory Permissions

CVE-2021-20001 CRITICAL

debian-edu-config < 2.12.16 - Incorrect Default Permissions for User Web Shares

CVE-2021-39658 CRITICAL

Android - Incorrect Default Permissions in ismsEx Service

CVE-2021-39635 CRITICAL

Android - Unauthenticated VoLTE Information Disclosure and Call Management via ims_ex Service

CVE-2021-33166 MEDIUM

Intel(R) RXT for Chromebook - Info Disclosure

CVE-2021-33129 HIGH

Intel(R) Advisor <2021.4.0 - Privilege Escalation

CVE-2021-22817 HIGH

Harmony/Magelis iPC Series - Privilege Escalation

CVE-2021-0093 MEDIUM

Intel Atom and Core i3 Processors - Denial of Service via Incorrect Firmware Permissions

Previous Page 38 of 61 Next

Details

Vulnerabilities 1,512

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy