Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-281

CWE-281

Improper Preservation of Permissions

Parent: CWE-732 - Incorrect Permission Assignment for Critical Resource

The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

329 vulnerabilities with CWE-281

CVE-2025-43026 HIGH

HP Support Assistant <9.44.18.0 - Privilege Escalation

CVE-2025-27703 MEDIUM

Absolute Secure Access < 13.54 - Privilege Escalation in Management Console

CVE-2025-32697 NONE

MediaWiki <1.42.6, 1.43.1 - Info Disclosure

CVE-2025-32696 NONE

MediaWiki <1.39.12, 1.42.6, 1.43.1 - Info Disclosure

CVE-2025-31184 HIGH

visionOS < 2.4 - Unauthorized Local Network Access via Improper Permissions

CVE-2025-30456 HIGH

macOS Ventura <13.7.5 - Privilege Escalation

CVE-2025-30449 HIGH

macOS Ventura <13.7.5, macOS Sequoia <15.4, macOS Sonoma <14.7.5 - ...

CVE-2025-25871 HIGH

Open Panel <0.3.4 - Privilege Escalation

CVE-2025-25711 HIGH

dtp.ae tNexus Airport View <2.8 - Privilege Escalation

CVE-2025-0914 LOW

Velociraptor <0.73.4 - Privilege Escalation

CVE-2025-24791 MEDIUM

Snowflake NodeJS Driver <2.0.1 - Privilege Escalation

CVE-2025-24087 MEDIUM

macOS Sequoia <15.3 - Info Disclosure

CVE-2025-21544 MEDIUM

Oracle Communications Order and Service Management <7.5.0 - Info Di...

CVE-2025-21541 MEDIUM

Oracle Workflow <12.2.14 - Privilege Escalation

CVE-2025-22620 MEDIUM

gix-worktree-state < 0.17.0 - Improper Preservation of Permissions

CVE-2025-24337 HIGH

WriteFreely <0.15.1 - Info Disclosure

CVE-2024-47270 LOW

Synology Surveillance Station - Improper Preservation of Permissions

CVE-2024-12125 HIGH

3scale Developer Portal - Info Disclosure

CVE-2024-46941 MEDIUM

vivo SystemUI < 14.0.8.120 - Unauthenticated Information Disclosure via Incorrect Component Protection

CVE-2024-57698 HIGH

modernwms 1.0 - Unauthenticated Information Disclosure via User List Endpoint

CVE-2024-56192 HIGH

Android - Local Privilege Escalation via wl_notify_gscan_event Bounds Check Bypass

CVE-2024-56191 HIGH

Android - Local Privilege Escalation via Integer Overflow in dhd_process_full_gscan_result

CVE-2024-56973 CRITICAL

Alvaria, Inc Unified IP Unified Director <7.2SP2 - RCE

CVE-2024-53994 MEDIUM

Discourse - Improper Preservation of Permissions in Chat Preferences

CVE-2024-53355 HIGH

EasyVirt DCScope <= 8.6.0, CO2Scope <= 1.3.0 - Privilege Escalation

Previous Page 2 of 14 Next

Details

Vulnerabilities 329

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy