Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-280

CWE-280

Improper Handling of Insufficient Permissions or Privileges

Parent: CWE-755 - Improper Handling of Exceptional Conditions

The product does not handle or incorrectly handles when it has insufficient privileges to access resources or functionality as specified by their permissions. This may cause it to follow unexpected code paths that may leave the product in an invalid state.

132 vulnerabilities with CWE-280

CVE-2024-6697 MEDIUM

Hitachi Vantara Pentaho <10.2.0.0-9.3.0.9 - DoS

CVE-2024-12430 HIGH

CVE-2024-43705 HIGH

GPU Kernel Driver - Info Disclosure

CVE-2024-42194 LOW

HCL BigFix Inventory - Privilege Escalation

CVE-2024-46874 HIGH

Ruijie Reyee OS <2.320 - Privilege Escalation

CVE-2024-43702 HIGH

Software - Memory Corruption

CVE-2024-4692 LOW

OpenText Application Automation Tools <24.1 - Privilege Escalation

CVE-2024-4211 LOW

OpenText Application Automation Tools - Info Disclosure

CVE-2024-47767 MEDIUM

Tuleap <15.13.99.113, <15.13-5, <15.12-5 - Info Disclosure

CVE-2024-47766 MEDIUM

Tuleap <15.13.99.110, <15.13-5, <15.12-5 - Info Disclosure

CVE-2024-46988 MEDIUM

Enalean Tuleap < 15.12-6 - Improper Exception Handling

CVE-2024-24116 CRITICAL

Ruijie RG-NBS2009G-P - Improper Authentication

CVE-2024-8451 HIGH

PLANET Technology - Privilege Escalation

CVE-2024-6660 HIGH

BookingPress - Privilege Escalation

CVE-2024-36451 HIGH

Webmin <2.003 - Privilege Escalation

CVE-2024-39691 MEDIUM

NPM Matrix-appservice-irc < 2.0.1 - Improper Exception Handling

CVE-2024-6302 HIGH

Conduit <0.6.0 - Privilege Escalation

CVE-2024-5163 CRITICAL

com.transsion.carlcare - Info Disclosure

CVE-2024-4468 MEDIUM

WordPress <9.9 - Privilege Escalation

CVE-2024-35228 MEDIUM

Wagtail - Privilege Escalation

CVE-2024-36112 MEDIUM

Nautobot <1.6.22 & 2.0.0 - Info Disclosure

CVE-2024-29852 LOW

Veeam Backup Enterprise Manager - Info Disclosure

CVE-2024-35301 MEDIUM

JetBrains TeamCity <2024.03.1 - Info Disclosure

CVE-2024-27837 LOW

macOS Sonoma <14.5 - Info Disclosure

CVE-2024-23704 HIGH

Google Android - Missing Authorization

Previous Page 3 of 6 Next

Details

Vulnerabilities 132

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy