Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,512 vulnerabilities with CWE-276

CVE-2021-25317 LOW

SUSE Linux Enterprise Server <11-SP4-LTSS - Privilege Escalation

CVE-2021-25319 HIGH

openSUSE Factory VirtualBox <6.1.20-1.1 - Privilege Escalation

CVE-2021-26804 MEDIUM

Centreon Web 19.10.18 20.04.8 20.10.2 - Unauthenticated File Upload via Image Extension Spoofing

CVE-2021-3451 MEDIUM

Lenovo PCManager < 3.0.400.3252 - Denial of Service via Configuration File Misplacement

CVE-2021-28271 HIGH

Soyal Technologies SOYAL 701Server 9.0.1 - Privilege Escalation

CVE-2021-20532 HIGH

IBM Spectrum Protect Client <8.1.11.0 - Privilege Escalation

CVE-2021-0246 HIGH

Juniper Networks Junos OS - Privilege Escalation

CVE-2021-0235 HIGH

Juniper Networks Junos OS - Privilege Escalation

CVE-2021-30494 MEDIUM

Razer Synapse 3 - Unauthenticated Arbitrary File Write via Chroma SDK Log File Path Manipulation

CVE-2021-30493 MEDIUM

Razer Synapse 3 - Privilege Escalation

CVE-2021-3462 MEDIUM

Lenovo Power Management Driver < 1.67.17.54 - Privilege Escalation via Unauthorized Device Object Access

CVE-2021-25381 MEDIUM

Samsung Account 10.8.0.4 and 12.1.1.3 - Unauthorized Action via PendingIntent Hijacking

CVE-2021-25359 MEDIUM

SELinux <SMR APR-2021 Release 1 - Info Disclosure

CVE-2021-25358 MEDIUM

SMR APR-2021 < Release 1 - Info Disclosure

CVE-2021-22538 MEDIUM

Google Exposure Notifications Verification Server < 0.23.1 - Improper Input Validation

CVE-2021-27193 CRITICAL

Netop Vision Pro <= 9.7.1 - Unauthenticated Privilege Escalation via API Incorrect Default Permissions

CVE-2021-25355 MEDIUM

Samsung Notes <4.2.00.22 - Privilege Escalation

CVE-2021-22311 HIGH

Huawei ManageOne 8.0.0, 8.0.1 - Incorrect Default Permissions

CVE-2021-21438 LOW

OTRS FAQ < 6.0.29 and OTRS < 7.0.24 - Unauthorized FAQ Article Access via Permission Bypass

CVE-2021-0381 MEDIUM

Android 11 - Local Information Disclosure via Unsafe PendingIntent in DeviceStorageMonitorService

CVE-2021-24032 MEDIUM

Zstandard 1.4.1-1.4.8 - Insecure Inherited Permissions via Output File Creation

CVE-2021-24031 MEDIUM

Zstandard < 1.4.1 - Insecure Inherited Permissions

CVE-2021-20653 MEDIUM

NEC CSDJ Firmware - Unauthenticated Historical Data Exposure via Access Restriction Bypass

CVE-2021-3394 HIGH

Millewin 13.39.028 13.39.28.3342 13.39.146.1 - Local Privilege Escalation via Insecure Folder Permissions

CVE-2021-21436 LOW

OTRS CIS in Customer Frontend < 7.0.14 - Unauthorized Config Item Access

Previous Page 43 of 61 Next

Details

Vulnerabilities 1,512

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy