Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,512 vulnerabilities with CWE-276

CVE-2019-3688 MEDIUM

SUSE Linux Enterprise Server squid - Incorrect Default Permissions in /usr/sbin/pinger

CVE-2019-17056 LOW

Linux Kernel < 5.3.2 - Unprivileged Raw Socket Creation via AF_NFC Module

CVE-2019-17054 LOW

Linux Kernel < 5.3.2 - Unauthenticated Raw Socket Creation via AF_APPLETALK Module

CVE-2019-17053 LOW

Linux Kernel < 5.3.2 - Unauthenticated Raw Socket Creation via AF_IEEE802154

CVE-2019-17052 LOW

Linux Kernel 3.16-5.3.2 - Unauthenticated Raw Socket Creation via AF_AX25 Module

CVE-2019-12670 MEDIUM

Cisco IOS XE - Authenticated Namespace Container Protection Bypass via Insufficient File Permissions

CVE-2019-3689 MEDIUM

nfs-utils < 1.3.0-34.18.1 - Incorrect Default Permissions in /var/lib/nfs Directory

CVE-2019-9679 HIGH

Dahua Debug - Privilege Escalation

CVE-2019-16355 MEDIUM

Beego 1.10.0 - Unauthenticated Session File Read via Weak File Permissions

CVE-2019-16106 HIGH

Humanica Humatrix <7 - Info Disclosure

CVE-2019-16186 HIGH

Limesurvey <3.17.14 - Privilege Escalation

CVE-2019-16185 HIGH

Limesurvey <3.17.14 - Info Disclosure

CVE-2019-16183 LOW

Limesurvey <3.17.14 - Info Disclosure

CVE-2019-15716 MEDIUM

wtfutil/wtf < 0.19.0 - Unprotected Credential Exposure via Insecure Config File Permissions

CVE-2019-5687 HIGH

NVIDIA Windows GPU Display Driver - Incorrect Default Permissions in Kernel Mode Layer Handler

CVE-2019-9630 HIGH

Sonatype Nexus Repository Manager <3.17.0 - Info Disclosure

CVE-2019-7588 MEDIUM

exacqVision ESM <5.12.2 - Privilege Escalation

CVE-2019-12795 HIGH

gvfs < 1.38.3, 1.40.x < 1.40.2, 1.41.x < 1.41.3 - Unauthenticated D-Bus Method Call Execution via Private Server Socket

CVE-2019-12450 CRITICAL

GLib 2.15.0-2.61.1 - Unrestricted File Permissions During Copy Operation

CVE-2019-3870 MEDIUM

Samba 4.9.0-4.9.6 - Incorrect Default Permissions in AD DC Installation Directory

CVE-2019-0683 MEDIUM

Active Directory - Privilege Escalation

CVE-2018-25359 HIGH

Splinterware System Scheduler Pro 5.12 Privilege Escalation

CVE-2018-9401 HIGH

Android - Local Privilege Escalation via Incorrect Bounds Check

CVE-2018-9434 HIGH

Android - Local Privilege Escalation via Parcel.cpp ASLR Bypass

CVE-2018-9431 HIGH

Android - Local Privilege Escalation via OSUInfo Input Validation

Previous Page 56 of 61 Next

Details

Vulnerabilities 1,512

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy