Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,512 vulnerabilities with CWE-276

CVE-2021-46093 CRITICAL

eliteCMS v1.0 - Privilege Escalation

CVE-2021-40416 HIGH

Reolink RLC-410W <3.0.0.136_20121102 - Info Disclosure

CVE-2021-40415 MEDIUM

reolink RLC-410W v3.0.0.136_20121102 - Info Disclosure

CVE-2021-40414 HIGH

reolink RLC-410W v3.0.0.136_20121102 - Info Disclosure

CVE-2021-40413 HIGH

reolink RLC-410W v3.0.0.136_20121102 - Info Disclosure

CVE-2021-40397 HIGH

Advantech WISE-PaaS/OTA Server <3.0.9 - Privilege Escalation

CVE-2021-40396 HIGH

Advantech DeviceOn/iService <1.1.7 - Privilege Escalation

CVE-2021-40389 HIGH

Advantech DeviceOn/iEdge Server <1.0.2 - Privilege Escalation

CVE-2021-40388 HIGH

Advantech SQ Manager Server <1.0.6 - Privilege Escalation

CVE-2021-41166 MEDIUM

Nextcloud Android <3.17.1 - Info Disclosure

CVE-2021-46086 HIGH

xzs-mysql >= t3.4.0 - Info Disclosure

CVE-2021-46085 MEDIUM

OneBlog <= 2.2.8 - Privilege Escalation

CVE-2021-36781 MEDIUM

openSUSE Factory parsec < 0.8.1-1.1 - Incorrect Default Permissions

CVE-2021-43860 HIGH

Flatpak <1.12.3-1.10.6 - Privilege Escalation

CVE-2021-45003 CRITICAL

Laundry Booking Management System 1.0 - Remote Code Execution via Profile Image Parameter

CVE-2021-40004 HIGH

HarmonyOS < 2.0 - Incorrect Default Permissions in Cellular Module

CVE-2021-39967 HIGH

Huawei EMUI - Broadcast Information Disclosure via Improper Permission Settings

CVE-2021-37132 MEDIUM

HarmonyOS < 2.0 - Unauthorized App List Disclosure via PackageManagerService

CVE-2021-45335 HIGH

Avast Antivirus < 20.4 - Incorrect Default Permissions in Sandbox Component

CVE-2021-21912 HIGH

Advantech R-SeeNet 2.4.15 - Privilege Escalation via File Replacement

CVE-2021-21911 HIGH

Advantech R-SeeNet 2.4.15 - Privilege Escalation via File Replacement

CVE-2021-21910 HIGH

Advantech R-SeeNet 2.4.15 - Privilege Escalation via File Replacement

CVE-2021-44858 HIGH

MediaWiki < 1.35.5, 1.36.x < 1.36.3, 1.37.x < 1.37.1 - Unauthenticated Private Page Access via Undo and Restore Actions

CVE-2021-0979 MEDIUM

Android 12 - Local Information Disclosure via ShortcutService Permissions Bypass

CVE-2021-43326 HIGH

Automox Agent <32 - Privilege Escalation

Previous Page 39 of 61 Next

Details

Vulnerabilities 1,512

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy