Search

Blog Stats Labs CLI MCP API Limits About Privacy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Blog Statistics Labs CLI Tool MCP Server API Documentation Rate Limits About Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-280

CWE-280

Improper Handling of Insufficient Permissions or Privileges

Parent: CWE-755 - Improper Handling of Exceptional Conditions

The product does not handle or incorrectly handles when it has insufficient privileges to access resources or functionality as specified by their permissions. This may cause it to follow unexpected code paths that may leave the product in an invalid state.

125 vulnerabilities with CWE-280

Non-privileged Software - Privilege Escalation

CVE-2026-0047 HIGH

ActivityManagerService - Privilege Escalation

CVE-2026-1772 MEDIUM

RTU500 - Info Disclosure

CVE-2026-23857 HIGH

Dell Update Package (DUP) Framework <24.12.00 - Privilege Escalation

CVE-2025-67848 HIGH

Moodle < 4.1.22 - Authentication Bypass

CVE-2026-20817 HIGH

Windows Error Reporting - Privilege Escalation

CVE-2025-46066 CRITICAL

Automai Director <25.2.0 - Privilege Escalation

CVE-2025-64997 MEDIUM

Checkmk - Information Disclosure

CVE-2025-43527 HIGH

macOS Tahoe <26.2 - Privilege Escalation

CVE-2025-58770 HIGH

APTIov - Privilege Escalation

CVE-2025-58122 MEDIUM

Checkmk - Information Disclosure

CVE-2025-58121 MEDIUM

Checkmk <2.4.0p16 - Info Disclosure

CVE-2025-58410 HIGH

Software - Memory Corruption

CVE-2025-62510 HIGH

Filerise < 1.5.0 - Improper Access Control

CVE-2025-62509 HIGH

Filerise < 1.4.0 - Improper Access Control

CVE-2025-62176 MEDIUM

Mastodon <4.4.6-4.2.27 - Info Disclosure

CVE-2025-45376 HIGH

Dell Repository Manager <3.4.8 - Privilege Escalation

CVE-2025-58457 MEDIUM

Apache ZooKeeper <3.9.4 - Privilege Escalation

CVE-2025-59040 MEDIUM

Tuleap - Info Disclosure

CVE-2025-50170 HIGH

Windows Cloud Files Mini Filter Driver - Privilege Escalation

CVE-2025-6573 CRITICAL

Kernel - Info Disclosure

CVE-2025-8109 HIGH

Software - Memory Corruption

CVE-2025-49731 LOW

Microsoft Teams - Privilege Escalation

CVE-2025-27025 HIGH

Unknown - Path Traversal

CVE-2025-27024 MEDIUM

Infinera G42 R6.1.3 - Info Disclosure

Page 1 of 5 Next

Details

Vulnerabilities 125

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy