CWE-280

Improper Handling of Insufficient Permissions or Privileges

Parent: CWE-755 - Improper Handling of Exceptional Conditions

The product does not handle or incorrectly handles when it has insufficient privileges to access resources or functionality as specified by their permissions. This may cause it to follow unexpected code paths that may leave the product in an invalid state.

132 vulnerabilities with CWE-280
CVE-2020-26195 MEDIUM
Dell Emc Powerscale Onefs - Improper Exception Handling
CVSS 5.3
CVE-2020-3427 MEDIUM
Windows Logon <4.1.2 - Privilege Escalation
CVSS 6.6
CVE-2020-8219 HIGH
Pulse Connect Secure <9.1R8 - Privilege Escalation
CVSS 7.2
CVE-2020-8117 MEDIUM
Nextcloud Server <14.0.3 - Info Disclosure
CVSS 4.3
CVE-2019-17437 HIGH
Paloaltonetworks Pan-os < 7.1.25 - Authentication Bypass
CVSS 7.8
CVE-2019-13415 MEDIUM
Search Guard <24.3 - Info Disclosure
CVSS 6.5
CVE-2019-6570 HIGH
Siemens Sinema Remote Connect Server < 2.0 - Incorrect Authorization
CVSS 8.8
Details
Vulnerabilities 132
Links
MITRE CWE Entry Search this CWE With Exploits