CWE-276

1,487 vulnerabilities with CWE-276

CVE-2025-52991 LOW

Nix/Lix/Guix <2.24.15/2.26.4/2.28.4/2.29.1 - Info Disclosure

CVSS 3.2

CVE-2025-52900 MEDIUM

Filebrowser < 2.33.7 - Incorrect Default Permissions

CVSS 5.5

CVE-2025-39201 MEDIUM

Hitachienergy Microscada X Sys600 - Incorrect Default Permissions

CVSS 6.1

CVE-2025-49144 HIGH

Notepad++ <8.8.1 - Privilege Escalation

CVSS 7.3

CVE-2025-5963 MEDIUM

Postbox - Code Injection

CVE-2025-5255 MEDIUM

Phoenix Code - Code Injection

CVE-2025-6264 MEDIUM

Velociraptor - Code Injection

CVSS 5.5

CVE-2025-49843 LOW

conda-smithy <3.47.1 - Privilege Escalation

CVE-2025-49842 LOW

conda-forge-webservices <2025.3.24 - Privilege Escalation

CVE-2025-6179 CRITICAL

Google Chrome OS - Incorrect Default Permissions

CVSS 9.8

CVE-2025-36632 HIGH

Tenable Nessus Agent < 10.8.5 - Incorrect Default Permissions

CVSS 7.8

CVE-2025-1699 LOW

MotoSignature - Info Disclosure

CVSS 2.8

CVE-2025-40585 CRITICAL

Energy Services - All versions with G5DFR - Privilege Escalation

CVSS 9.9

CVE-2025-49006 HIGH

Wasp <0.16.6 - Privilege Escalation

CVE-2025-48959 MEDIUM

Acronis Cyber Protect Cloud Agent <40077 - Privilege Escalation

CVSS 6.7

CVE-2025-20984 MEDIUM

Samsung Wear OS - Incorrect Default Permissions

CVSS 6.8

CVE-2025-48950 HIGH

MaxKB <1.10.8-lts - Privilege Escalation

CVSS 8.8

CVE-2025-46355 HIGH

PC Time Tracer <5.2 - RCE

CVSS 7.3

CVE-2025-23105 HIGH

Samsung Exynos 2200 Firmware - Incorrect Default Permissions

CVSS 7.8

CVE-2025-2502 HIGH

Lenovo Pcmanager < 5.1.110.5082 - Incorrect Default Permissions

CVSS 7.8

CVE-2025-31261 MEDIUM

Apple Macos < 13.7.5 - Incorrect Default Permissions

CVSS 5.5

CVE-2025-4081 MEDIUM

macOS - Privilege Escalation

CVE-2025-32803 MEDIUM

Kea <2.4.1, <2.6.2, <2.7.8 - Info Disclosure

CVSS 4.0

CVE-2025-4412 MEDIUM

Viscosity - Privilege Escalation

CVE-2025-46803 MEDIUM

Screen - Privilege Escalation

CVSS 5.0