Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,510 vulnerabilities with CWE-276

CVE-2025-13131 HIGH

Sonarr 4.0.15.2940 - Local Privilege Escalation

CVE-2025-13130 HIGH

Radarr 5.28.0.10274 - Privilege Escalation

CVE-2025-8485 HIGH

Lenovo App Store < 9.0.2530.1027 - Authenticated Privilege Escalation via Improper Permissions

CVE-2025-8421 MEDIUM

Lenovo Dock Manager - Privilege Escalation

CVE-2025-61667 HIGH

Datadog Linux Host Agent <7.70.2 - Code Injection

CVE-2025-11567 HIGH

PowerChute Serial Shutdown - Incorrect Default Permissions

CVE-2025-32091 HIGH

Intel(R) Arc(TM) B-series GPUs - Privilege Escalation

CVE-2025-31940 MEDIUM

Intel(R) Thread Director Visualizer <1.1.1 - Privilege Escalation

CVE-2025-30518 MEDIUM

Intel(R) PresentMon <2.3.1 - Privilege Escalation

CVE-2025-27711 MEDIUM

Intel(R) OFU <14.1.31 - Privilege Escalation

CVE-2025-27246 MEDIUM

Intel(R) Processor Identification Utility <8.0.43 - Privilege Escal...

CVE-2025-13025 HIGH

Firefox < 145.0 - Incorrect Default Permissions in WebGPU Component

CVE-2025-10918 HIGH

Ivanti Endpoint Manager < 2024 SU4 - Authenticated Arbitrary File Write via Insecure Default Permissions

CVE-2025-64436 MEDIUM

KubeVirt < 1.5.3 - Improper Privilege Management via Virt-Handler Service Account

CVE-2025-43507 MEDIUM

Apple watchOS <26.1 - Info Disclosure

CVE-2025-43444 MEDIUM

iPadOS < 26.1 - Unprotected User Data Exposure via Permissions Issue

CVE-2025-43442 LOW

iPadOS < 26.1 - Unprotected User Data Exposure via App Permissions

CVE-2025-43350 LOW

iPadOS < 26.1 - Unprotected User Data Exposure via Lock Screen

CVE-2025-8432 HIGH

Centreon Infra Monitoring <24.10.6-<24.04.9-<23.10.15 - Info Disclo...

CVE-2025-46185 MEDIUM

pgcodekeeper 10.12.0 - Info Disclosure

CVE-2025-12100 HIGH

MongoDB BI Connector ODBC driver <1.4.6 - Privilege Escalation

CVE-2025-57848 MEDIUM

Container-native Virtualization - Privilege Escalation

CVE-2025-23347 HIGH

NVIDIA Project G-Assist - Privilege Escalation

CVE-2025-11575 HIGH

MongoDB Atlas SQL ODBC driver <2.0.0 - Privilege Escalation

CVE-2025-58712 MEDIUM

Apache ActiveMQ Artemis - Container Privilege Escalation via Group-Writable /etc/passwd

Previous Page 5 of 61 Next

Details

Vulnerabilities 1,510

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy