CWE-281

Improper Preservation of Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

321 vulnerabilities with CWE-281
CVE-2021-38553 MEDIUM
HashiCorp Vault <1.8.0 - Info Disclosure
CVSS 4.4
CVE-2021-29971 CRITICAL
Firefox < 90 - SSRF
CVSS 9.8
CVE-2021-32465 HIGH
Trend Micro Apex One, Apex One as a Service & OfficeScan XG SP1 - P...
CVSS 8.8
CVE-2021-22382 MEDIUM
Huawei LTE USB Dongle - Privilege Escalation
CVSS 6.5
CVE-2021-21735 MEDIUM
ZTE Zxhn H168n Firmware < 3.5.0_eg1t4_te - Information Disclosure
CVSS 6.5
CVE-2021-0074 HIGH
Intel(R) Computing Improvement Program <2.4.5982 - Privilege Escala...
CVSS 7.8
CVE-2021-3495 HIGH
Kiali-operator <1.33.0-1.24.7 - Privilege Escalation
CVSS 8.8
CVE-2021-22137 MEDIUM
Elasticsearch < 6.8.15 - Information Disclosure
CVSS 5.3
CVE-2021-30482 HIGH
JetBrains UpSource <2020.1.1883 - Info Disclosure
CVSS 7.5
CVE-2021-3418 MEDIUM
Grub2 <2.06 - Privilege Escalation
CVSS 6.4
CVE-2021-21379 HIGH
XWiki Platform - Code Injection
CVSS 7.7
CVE-2021-20263 LOW
QEMU virtio-fs - Privilege Escalation
CVSS 3.3
CVE-2021-23963 MEDIUM
Firefox < 85 - Info Disclosure
CVSS 4.3
CVE-2020-36070 CRITICAL
Yoyager <1.4 - RCE
CVSS 9.8
CVE-2020-18329 HIGH
Rehau pCOWeb <6.27 - Info Disclosure
CVSS 7.5
CVE-2020-12744 HIGH
Verint Desktop Resources 15.2 - Privilege Escalation
CVSS 7.8
CVE-2020-15496 HIGH
Acronis True Image < 2021 - Privilege Escalation
CVSS 7.8
CVE-2020-27383 HIGH
Battle.Net 1.27.1.12428 - Privilege Escalation
CVSS 7.8
CVE-2020-18890 CRITICAL
puppyCMS <5.1 - RCE
CVSS 9.8
CVE-2020-26246 HIGH
Pimcore <6.8.5 - Privilege Escalation
CVSS 7.7
CVE-2020-5796 HIGH
Nagios XI <5.7.4 - Privilege Escalation
CVSS 7.8
CVE-2020-12353 MEDIUM
Intel Data Center Manager < 3.6.2 - Denial of Service
CVSS 6.5
CVE-2020-12345 HIGH
Intel(R) Data Center Manager Console <3.6.2 - Privilege Escalation
CVSS 7.8
CVE-2020-12335 HIGH
Intel(R) Processor Identification Utility <6.4.0603 - Privilege Esc...
CVSS 7.8
CVE-2020-12334 HIGH
Intel(R) Advisor <2020 Update 2 - Privilege Escalation
CVSS 7.8
Details
Vulnerabilities 321
Links
MITRE CWE Entry Search this CWE With Exploits