Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-276

CWE-276

Medium likelihood

Incorrect Default Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

During installation, installed file permissions are set to allow anyone to modify those files.

1,512 vulnerabilities with CWE-276

CVE-2015-7378 HIGH

Panda Security URL Filtering < 4.3.1.8 - Privilege Escalation via Weak Directory ACL

Valve Steam <2.10.91.91 - Privilege Escalation

CVE-2014-7210 CRITICAL

pdns <3.3.1-1 - Privilege Escalation

CVE-2014-2723 HIGH

FortiBalancer 400 1000 2000 3000 - Unauthenticated Privileged SSH Access via Configuration Error

CVE-2014-2722 HIGH

FortiBalancer 400 1000 2000 3000 - Unauthenticated Privileged SSH Access via Configuration Error

CVE-2014-2721 HIGH

FortiBalancer 400 1000 2000 3000 - Unauthenticated Privileged SSH Access via Configuration Error

CVE-2014-7303 HIGH

SGI Tempo - Unprotected User Data Exposure via Weak File Permissions

CVE-2014-7302 HIGH

SGI Tempo - Incorrect Default Permissions via vx Binary

CVE-2014-7301 MEDIUM

SGI Tempo - Unprotected User Data Exposure via Weak File Permissions

CVE-2013-4281 MEDIUM

Red Hat Openshift 1 - Unprotected Private Key Exposure via Weak /etc/openshift/server_priv.pem Permissions

CVE-2013-4859 HIGH

INSTEON Hub 2242-222 - No Auth Required

CVE-2013-4764 MEDIUM

Samsung Galaxy S3/S4 - Info Disclosure

CVE-2013-4763 MEDIUM

Samsung Galaxy S3/S4 - Info Disclosure

CVE-2013-1425 MEDIUM

ldap_git_backup < 1.0.4 - Unprotected Password Hash Exposure via Incorrect Directory Permissions

systemd < 194 - Privilege Escalation via XKB Layout Configuration

CVE-2013-0266 MEDIUM

OpenStack Essex - Information Disclosure via World-Readable Configuration Files

CVE-2013-0632 CRITICAL KEV

Adobe ColdFusion 9.0-9.0.2, 10 - Unauthenticated Authentication Bypass and Remote Code Execution via RDS Component

CVE-2012-4434 HIGH

fwknop < 2.0.3 - Authenticated Denial of Service or Remote Code Execution

CVE-2012-5578 MEDIUM

Python keyring < 0.10 - Insecure Database File Permissions

CVE-2012-6136 MEDIUM

tuned 2.10.0 - Incorrect Default Permissions in PID File

CVE-2012-1157 MEDIUM

Moodle < 2.2.2 - Unauthenticated Repository Access via Default Permissions

CVE-2012-5577 HIGH

Python keyring lib <0.10 - Info Disclosure

dracut < 024 - Incorrect Default Permissions in initramfs Images

CVE-2011-1762 MEDIUM

WordPress < 3.0.6 - Improper Access Control in wp-admin/press-this.php

MediaWiki <1.17.1 - Info Disclosure

Previous Page 60 of 61 Next

Details

Vulnerabilities 1,512

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy