Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-281

CWE-281

Improper Preservation of Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

329 vulnerabilities with CWE-281

CVE-2020-27383 HIGH

Battle.Net 1.27.1.12428 - Privilege Escalation

CVE-2020-18890 CRITICAL

puppyCMS 5.1 - Remote Code Execution via Insecure Permissions in /admin/functions.php

CVE-2020-26246 HIGH

Pimcore <6.8.5 - Privilege Escalation

CVE-2020-5796 HIGH

Nagios XI <5.7.4 - Privilege Escalation

CVE-2020-12353 MEDIUM

Intel Data Center Manager < 3.6.2 - Authenticated Denial of Service via Network Access

CVE-2020-12345 HIGH

Intel(R) Data Center Manager Console <3.6.2 - Privilege Escalation

CVE-2020-12335 HIGH

Intel(R) Processor Identification Utility <6.4.0603 - Privilege Esc...

CVE-2020-12334 HIGH

Intel(R) Advisor <2020 Update 2 - Privilege Escalation

CVE-2020-12332 HIGH

Intel(R) HID Event Filter Driver - Privilege Escalation

CVE-2020-12330 HIGH

Intel(R) Falcon 8+ UAS AscTec Thermal Viewer - Privilege Escalation

CVE-2020-16910 MEDIUM

Microsoft Windows - Privilege Escalation

CVE-2020-8182 HIGH

Nextcloud Deck 0.8.0 - Privilege Escalation

CVE-2020-6564 MEDIUM

Google Chrome <85.0.4183.83 - Info Disclosure

CVE-2020-0405 HIGH

Android 11 - Local Privilege Escalation via Unsafe Implicit PendingIntent

CVE-2020-13308 LOW

GitLab <13.1.10-13.3.4 - Info Disclosure

CVE-2020-13282 LOW

GitLab <13.0.12-13.2.3 - Privilege Escalation

CVE-2020-8913 HIGH

Android Play Core Library < 1.7.2 - Local Arbitrary Code Execution via SplitCompat.install Endpoint

CVE-2020-15113 MEDIUM

etcd <3.3.23, 3.4.10 - Info Disclosure

CVE-2020-8190 HIGH

Citrix Application Delivery Controller Firmware < 10.5-70.18 - Privilege Escalation

CVE-2020-14958 MEDIUM

Gogs 0.11.91 - Improper Preservation of Permissions in Email Ownership Check

CVE-2020-13763 HIGH

Joomla! < 3.9.19 - Unauthenticated HTML Injection via Global Textfilter Configuration

CVE-2020-13230 MEDIUM

Cacti < 1.2.11 - Improper Preservation of Permissions

CVE-2020-2025 HIGH

Kata Containers runtime < 1.11.0 - Unauthenticated Guest-to-Host Filesystem Overwrite via Image Persistence

CVE-2020-9781 MEDIUM

iPadOS < 13.4 - Unintended Website Permission Grant via Permission Prompt Retention

CVE-2020-10083 CRITICAL

GitLab 12.7-12.8.1 - Insecure Permissions

Previous Page 11 of 14 Next

Details

Vulnerabilities 329

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy