Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,487 vulnerabilities with CWE-276

CVE-2025-53811 MEDIUM

Mosh-Pro - Code Injection

CVE-2025-8098 HIGH

Lenovo Pcmanager < 5.1.120.7041 - Incorrect Default Permissions

CVE-2025-27559 MEDIUM

AI Playground <v2.3.0 alpha - Privilege Escalation

CVE-2025-26470 MEDIUM

Intel(R) Distribution for Python <2025.1.0 - Privilege Escalation

CVE-2025-20087 MEDIUM

Intel(R) oneAPI DPC++/C++ Compiler - Privilege Escalation

CVE-2025-20023 MEDIUM

Intel(R) Graphics Driver - Privilege Escalation

CVE-2025-8672 HIGH

Gimp - Incorrect Default Permissions

CVE-2025-7195 MEDIUM

Operator-framework Operator-sdk - Incorrect Default Permissions

CVE-2025-44643 HIGH

Draytek AP903 <1.4.18-AP918R <1.4.9 - Privilege Escalation

CVE-2025-41658 MEDIUM

CODESYS Runtime Toolkit - Info Disclosure

CVE-2025-52361 HIGH

AK-Nord USB-Server-LXL Firmware v0.0.16 Build 2023-03-13 - Command ...

CVE-2025-54085 LOW

Absolute Secure Access < 13.56 - Incorrect Default Permissions

CVE-2025-49084 CRITICAL

Absolute Secure Access < 13.56 - Incorrect Default Permissions

CVE-2025-49082 LOW

Absolute Secure Access < 13.56 - Incorrect Default Permissions

CVE-2025-54530 HIGH

Jetbrains Teamcity < 2025.07 - Incorrect Default Permissions

CVE-2025-45467 HIGH

Unitree Go1 Firmware - Incorrect Default Permissions

CVE-2025-8069 HIGH

AWS Client VPN - Code Injection

CVE-2025-8031 CRITICAL

Mozilla Firefox < 128.13.0 - Incorrect Default Permissions

CVE-2025-54059 MEDIUM

Chainguard.dev Melange < 0.29.5 - Incorrect Default Permissions

CVE-2025-53945 HIGH

apko <0.29.5 - Privilege Escalation

CVE-2025-0886 HIGH

Elliptic Labs Virtual Lock Sensor - Privilege Escalation

CVE-2025-7672 MEDIUM

JiranSoft CrossEditor4 <4.6.0.23 - XSS

CVE-2025-5199 HIGH

Canonical Multipass < 1.16.0 - Incorrect Authorization

CVE-2025-41665 MEDIUM

PLC <unknown> - DoS

CVE-2025-46014 HIGH

Honor PC Manager < 16.0.0.118 - Improper Access Control

Previous Page 6 of 60 Next

Details

Vulnerabilities 1,487

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy