Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-281

CWE-281

Improper Preservation of Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

329 vulnerabilities with CWE-281

CVE-2020-8634 HIGH

Wing FTP Server v6.2.3 - Privilege Escalation

CVE-2020-9442 HIGH

OpenVPN Connect <3.1.0.361 - Privilege Escalation

CVE-2020-7063 MEDIUM

PHP <7.2.28-7.3.15-7.4.3 - Info Disclosure

CVE-2020-8633 MEDIUM

Zimbra Collaboration Suite <8.8.15.7 - Info Disclosure

CVE-2020-8117 MEDIUM

Nextcloud Server <14.0.3 - Info Disclosure

CVE-2019-14841 HIGH

Red Hat Decision Manager - Authenticated Privilege Escalation via Role Modification in Response Header

CVE-2019-0233 HIGH

Apache Struts 2.0.0-2.5.20 - Denial of Service via File Upload Permission Override

CVE-2019-20846 HIGH

Mattermost Server <5.18.0 - Info Disclosure

CVE-2019-20843 HIGH

Mattermost Server <5.18.0-5.9.7 - Info Disclosure

CVE-2019-15621 MEDIUM

Nextcloud Server 16.0.1 - Info Disclosure

CVE-2019-13727 HIGH

Google Chrome < 79.0.3945.79 - Same Origin Policy Bypass via WebSocket

CVE-2019-19620 LOW

SecureWorks Red Cloak Windows Agent <2.0.7.9 - Auth Bypass

CVE-2019-18458 LOW

GitLab 10.5.0-12.4.0 - Insecure Permission Preservation

CVE-2019-18457 HIGH

GitLab 11.8.0-12.4.0 - Insecure Permissions in Security Token Handling

CVE-2019-13682 HIGH

Google Chrome <77.0.3865.75 - Auth Bypass

CVE-2019-13668 HIGH

Google Chrome <77.0.3865.75 - Info Disclosure

CVE-2019-16539 MEDIUM

Jenkins Support Core Plugin <2.63 - Privilege Escalation

CVE-2019-14226 HIGH

OX App Suite <7.10.2 - Info Disclosure

CVE-2019-0073 MEDIUM

Junos OS Insecure PKI Key Export Permissions

CVE-2019-14956 MEDIUM

JetBrains YouTrack <2019.2.53938 - Info Disclosure

CVE-2019-11748 MEDIUM

Firefox < 69.0 and Firefox ESR < 68.1.0 - Improper Preservation of Permissions in WebRTC

CVE-2019-6791 MEDIUM

GitLab <11.5.8-11.7.1 - Privilege Escalation

CVE-2019-6995 MEDIUM

GitLab <11.5.8-11.7.1 - Info Disclosure

CVE-2018-12989 MEDIUM

Pearson VUE Certiport Console <2018-06-26 - Privilege Escalation

CVE-2018-3762 MEDIUM

Nextcloud Server < 12.0.8 - Improper Access Control via File Preview Request

Previous Page 12 of 14 Next

Details

Vulnerabilities 329

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy