Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,512 vulnerabilities with CWE-276

CVE-2020-27228 HIGH

OpenClinic GA <5.173.3 - Privilege Escalation

CVE-2020-13534 HIGH

Dream Report 5 R20-2 - Privilege Escalation

CVE-2020-13533 HIGH

Dream Report 5 R20-2 - Privilege Escalation

CVE-2020-13532 HIGH

Dream Report <5 R20-2 - Privilege Escalation

CVE-2020-4976 MEDIUM

IBM DB2 9.7-11.5 - Unauthenticated Arbitrary File Read and Write via Weak File Permissions

CVE-2020-8357 MEDIUM

Lenovo PCManager <3.0.200.2042 - DoS

CVE-2020-13554 HIGH

Advantech WebAccess/SCADA 9.0.1 - Local Privilege Escalation via Insecure File Permissions

CVE-2020-22475 MEDIUM

Tasks <9.7.3 - Privilege Escalation

CVE-2020-13549 HIGH

Sytech XLReporter 14.0.1 - Local Privilege Escalation via Insecure File Permissions

CVE-2020-36233 HIGH

Atlassian Bitbucket <6.10.9, 7.x<7.6.4, 7.7.0-7.10.1 Local Privilege Escalation

CVE-2020-13555 HIGH

Advantech WebAccess/SCADA 9.0.1 - Local Privilege Escalation via Insecure File Permissions

CVE-2020-13553 HIGH

Advantech WebAccess/SCADA 9.0.1 - Local Privilege Escalation via File System Permissions

CVE-2020-13552 HIGH

Advantech WebAccess/SCADA 9.0.1 - Local Privilege Escalation via Service Executable Replacement

CVE-2020-13551 HIGH

Advantech WebAccess/SCADA 9.0.1 - Local Privilege Escalation via PostgreSQL Executable

CVE-2020-8765 MEDIUM

Intel(R) RealSense(TM) DCM - Privilege Escalation

CVE-2020-8701 MEDIUM

Intel(R) SSD Toolbox <2/9/2021 - Privilege Escalation

CVE-2020-0524 MEDIUM

Intel Ethernet Controller I210 Firmware < 3.30 - Authenticated Denial of Service via Local Access

CVE-2020-28392 HIGH

SIMARIS configuration < 4.0.1 - Incorrect Default Permissions

CVE-2020-16144 MEDIUM

ownCloud files_antivirus < 0.15.2 - Virus File Deletion Failure via Public Link Upload

CVE-2020-25245 HIGH

DIGSI 4 < 4.94 - Unauthenticated DLL Hijacking via Writeable System Path

CVE-2020-29582 MEDIUM

JetBrains Kotlin <1.4.21 - Info Disclosure

CVE-2020-25208 MEDIUM

JetBrains YouTrack < 2020.4.4701 - Unauthenticated User Enumeration via REST API

CVE-2020-26941 MEDIUM

ESET <version> - Privilege Escalation

CVE-2020-11997 MEDIUM

Apache Guacamole < 1.2.0 - Unauthorized Connection History Access

CVE-2020-13922 MEDIUM

Apache DolphinScheduler < 1.3.2 - Unauthenticated Password Override via API Interface

Previous Page 45 of 61 Next

Details

Vulnerabilities 1,512

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy