Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-277

CWE-277

Insecure Inherited Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

A product defines a set of insecure permissions that are inherited by objects that are created by the program.

70 vulnerabilities with CWE-277

CVE-2026-7891 CRITICAL

VerySecureApp < 1.1.0 - Unauthenticated Data Exposure via Mendix Entity Inheritance Misconfiguration

CVE-2026-30266 HIGH

DeepCool DeepCreative <=1.2.7 - Privilege Escalation

CVE-2026-20630 MEDIUM

macOS Tahoe <26.3 - Info Disclosure

CVE-2025-32092 MEDIUM

Intel(R) Graphics Software <25.30.1702.0 - Privilege Escalation

CVE-2025-37174 HIGH

Mobility Conductors - Authenticated RCE

CVE-2025-65111 MEDIUM

SpiceDB < 1.47.1 - Insecure Inherited Permissions in LookupResources

CVE-2025-64185 MEDIUM

Open OnDemand <4.0.8-3.1.16 - Info Disclosure

CVE-2025-24327 MEDIUM

Intel(R) Rapid Storage Technology Application <20.0.1021 - Privileg...

CVE-2025-11554 MEDIUM

Portabilis i-Educar <2.9.10 - Privilege Escalation

CVE-2025-56019 MEDIUM

Agasta Easytouch+ 9.3.97 - Privilege Escalation

CVE-2025-58437 HIGH

Coder 2.22.0-2.24.3 2.25.0-2.25.1 - Insecure Session Token Inheritance in Prebuilt Workspaces

CVE-2025-9039 MEDIUM

Amazon ECS <1.97.1 - Info Disclosure

CVE-2025-36104 MEDIUM

IBM Storage Scale 5.2.3.0 and 5.2.3.1 - Authenticated Sensitive Information Exposure via SMB Inherited Permissions

CVE-2025-32797 HIGH

conda-build < 25.3.1 - Insecure Inherited Permissions via Temporary Build Script

CVE-2025-3473 MEDIUM

IBM Security Guardium 12.1 - Privilege Escalation

CVE-2025-22448 MEDIUM

Intel(R) Simics(R) Package Manager <1.12.0 - DoS

CVE-2025-20629 MEDIUM

Intel(R) Ethernet Network Adapter E810 Series <4.60 - Privilege Esc...

CVE-2025-20008 HIGH

Intel(R) Simics(R) Package Manager <1.12.0 - Privilege Escalation

CVE-2025-31332 MEDIUM

SAP BusinessObjects - Privilege Escalation

CVE-2025-29982 MEDIUM

Dell Wyse Management Suite <WMS 5.1 - Privilege Escalation

CVE-2024-51448 MEDIUM

IBM Robotic Process Automation 21.0.0-21.0.7.17 & 23.0.0-23.0.18 Privilege Escalation

CVE-2024-36294 MEDIUM

Intel(R) DSA <24.3.26.8 - Privilege Escalation

CVE-2024-36276 MEDIUM

Intel(R) CIP <2.4.10852 - Privilege Escalation

CVE-2024-45599 LOW

Cursor <0.41.0 - Privilege Escalation

CVE-2024-42681 HIGH

xxl-job <= 2.4.1 Sub-Task ID - Insecure Permissions Code Execution

Page 1 of 3 Next

Details

Vulnerabilities 70

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy