CWE-276— Incorrect Default Permissions
During installation, installed file permissions are set to allow anyone to modify those files.— MITRE CWE catalog
1,638 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-276page 30 of 33
- CVE-2025-26470MEDIUMCVSS 6.7EG 6.72025-08-12
Incorrect default permissions for some Intel(R) Distribution for Python software installers before version 2025.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2025-27154CRITICALCVSS 9.8EG 9.82025-02-27
Spotipy is a lightweight Python library for the Spotify Web API. The `CacheHandler` class creates a cache file to store the auth token. Prior to version 2.25.1, the file created has `rw-r--r--` (644) permissions by default, when it could b…
- CVE-2025-27246MEDIUMCVSS 6.7EG 6.72025-11-11
Incorrect default permissions for the Intel(R) Processor Identification Utility before version 8.0.43 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with…
- CVE-2025-27462CRITICALCVSS 9.4EG 9.42026-07-09
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The Windows PV drivers expose various facilities to userspace. Several of these have no security descriptor…
- CVE-2025-27463CRITICALCVSS 9.4EG 9.42026-07-09
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The Windows PV drivers expose various facilities to userspace. Several of these have no security descriptor, a…
- CVE-2025-27464CRITICALCVSS 9.4EG 9.42026-07-09
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The Windows PV drivers expose various facilities to userspace. Several of these have no security descriptor, a…
- CVE-2025-27521MEDIUMCVSS 6.8EG 6.82025-03-04
Vulnerability of improper access permission in the process management module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-27559MEDIUMCVSS 6.7EG 6.72025-08-12
Incorrect default permissions for some AI Playground software before version v2.3.0 alpha may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2025-27612MEDIUMCVSS 5.9EG 5.92025-03-21
libcontainer is a library for container control. Prior to libcontainer 0.5.3, while creating a tenant container, the tenant builder accepts a list of capabilities to be added in the spec of tenant container. The logic here adds the given c…
- CVE-2025-27677CRITICALCVSS 9.8EG 9.82025-03-05
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Symbolic Links For Unprivileged File Interaction V-2022-002.
- CVE-2025-27682CRITICALCVSS 9.8EG 9.82025-03-05
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application 20.0.1330 allows Insecure Log Permissions V-2022-005.
- CVE-2025-27711MEDIUMCVSS 6.7EG 6.72025-11-11
Incorrect default permissions for some Intel(R) One Boot Flash Update (Intel(R) OFU) software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticat…
- CVE-2025-2781MEDIUMCVSS 6.3EG 6.32025-03-28
The WatchGuard Mobile VPN with SSL Client on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulner…
- CVE-2025-2782MEDIUMCVSS 6.3EG 6.32025-03-28
The WatchGuard Terminal Services Agent on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerabl…
- CVE-2025-27926MEDIUMCVSS 4.3EG 4.32025-03-10
In Nintex Automation 5.6 and 5.7 before 5.8, the K2 SmartForms Designer folder has configuration files (web.config) containing passwords that are readable by unauthorized users.
- CVE-2025-29504HIGHCVSS 7.8EG 7.82025-04-03
Insecure Permission vulnerability in student-manage 1 allows a local attacker to escalate privileges via the Unsafe permission verification.
- CVE-2025-29570HIGHCVSS 7.8EG 7.82025-04-03
An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to escalate privileges via the function tftp_image_check of a binary named rc.
- CVE-2025-29801HIGHCVSS 7.8EG 7.82025-04-08
Incorrect default permissions in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
- CVE-2025-30465CRITICALCVSS 9.8EG 9.82025-03-31
A permissions issue was addressed with improved validation. This issue is fixed in iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sequoia 15.7.2, macOS Sonoma 14.7.5, macOS Sonoma 14.8.2, macOS Tahoe 26.1, macOS Ventura 13.7.5. A shortcut may be…
- CVE-2025-30518MEDIUMCVSS 6.7EG 6.72025-11-11
Incorrect default permissions for some Intel(R) PresentMon before version 2.3.1 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexi…
- CVE-2025-30701HIGHCVSS 7.3EG 7.32025-04-15
Vulnerability in the RAS Security component of Oracle Database Server. Supported versions that are affected are 19.3-19.26, 21.3-21.17 and 23.4-23.7. Easily exploitable vulnerability allows low privileged attacker having User Account pri…
- CVE-2025-30706HIGHCVSS 7.5EG 7.52025-04-15
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multip…
- CVE-2025-31261MEDIUMCVSS 5.5EG 5.52025-05-29
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to access protected user data.
- CVE-2025-31655MEDIUMCVSS 6.7EG 6.72026-02-10
Incorrect default permissions for some Intel(R) Battery Life Diagnostic Tool within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity …
- CVE-2025-31940MEDIUMCVSS 6.7EG 6.72025-11-11
Incorrect default permissions for some Intel(R) Thread Director Visualizer software before version 1.1.1 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user comb…
- CVE-2025-32091HIGHCVSS 8.2EG 8.22025-11-11
Incorrect default permissions in some firmware for the Intel(R) Arc(TM) B-series GPUs within Ring 1: Device Drivers may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attac…
- CVE-2025-32453MEDIUMCVSS 6.7EG 6.72026-02-10
Incorrect default permissions for some Intel(R) Graphics Driver software within Ring 2: Privileged Process may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity att…
- CVE-2025-32749HIGHCVSS 7.5EG 7.52026-05-26
Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through... Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An unauthenticated att…
- CVE-2025-32803MEDIUMCVSS 4.0EG 4.02025-05-28
In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.
- CVE-2025-32981HIGHCVSS 7.1EG 7.12025-04-25
NETSCOUT nGeniusONE before 6.4.0 b2350 allows local users to leverage Insecure Permissions for the nGeniusCLI File.
- CVE-2025-34191HIGHCVSS 8.4EG 8.42025-09-19
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.843 and Application prior to 20.0.1923 (macOS/Linux client deployments) contain an arbitrary file write vulnerability via the response file handling. When t…
- CVE-2025-34332HIGHCVSS 7.8EG 7.82025-11-19
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23 include a web administration component that controls back-end Windows services using helper batch scripts located under C:\\F2MAdmin\\F2E\\AudioCo…
- CVE-2025-34333HIGHCVSS 7.8EG 7.82025-11-19
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23 configure the web document root at C:\\F2MAdmin\\F2E with overly permissive file system permissions. Authenticated local users have modify rights …
- CVE-2025-35062MEDIUMCVSS 5.3EG 5.32025-10-09
Newforma Info Exchange (NIX) before version 2023.1 by default allows anonymous authentication which allows an unauthenticated attacker to exploit additional vulnerabilities that require authentication.
- CVE-2025-3528HIGHCVSS 8.2EG 8.22025-05-09
A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror Registry for OpenShift has write access to the `/etc/passwd`. This flaw allows a malicious actor with access to the container to modify the passw…
- CVE-2025-3617HIGHCVSS 7.8EG 7.82025-04-15
A privilege escalation vulnerability exists in the Rockwell Automation ThinManager. When the software starts up, files are deleted in the temporary folder causing the Access Control Entry of the directory to inherit permissions from the pa…
- CVE-2025-36511MEDIUMCVSS 6.7EG 6.72026-02-10
Incorrect default permissions for some Intel(R) Memory and Storage Tool before version 2.5.2 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high c…
- CVE-2025-36522MEDIUMCVSS 6.7EG 6.72026-02-10
Incorrect default permissions for some Intel(R) Chipset Software before version 10.1.20266.8668 or later. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined …
- CVE-2025-36632HIGHCVSS 7.8EG 7.82025-06-16
In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could execute code with SYSTEM privilege.
- CVE-2025-36857LOWCVSS 3.3EG 3.32025-09-25
Rapid7 Appspider Pro versions below 7.5.021, suffer from a broken access control vulnerability in the application's configuration file loading mechanism, whereby an attacker can place files in directories belonging to other users or proje…
- CVE-2025-39201MEDIUMCVSS 6.1EG 6.12025-06-24
A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local unauthenticated attacker to tamper a system file, making denial of Notify service.
- CVE-2025-40585CRITICALCVSS 9.9EG 9.92025-06-10
A vulnerability has been identified in Energy Services (All versions with G5DFR). Affected solutions using G5DFR contain default credentials. This could allow an attacker to gain control of G5DFR component and tamper with outputs from the …
- CVE-2025-4081MEDIUMCVSS 4.8EG 4.82025-05-29
Use of entitlement "com.apple.security.cs.disable-library-validation" and lack of launch and library load constraints allows to substitute a legitimate dylib with malicious one. A local attacker with unprivileged access can execute the app…
- CVE-2025-41658MEDIUMCVSS 5.5EG 5.52025-08-04
CODESYS Runtime Toolkit-based products may expose sensitive files to local low-privileged operating system users due to default file permissions.
- CVE-2025-41665MEDIUMCVSS 6.5EG 6.52025-07-08
An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC due to incorrect default permissions of a config file.
- CVE-2025-42598HIGHCVSS 7.8EG 7.82025-04-28
Multiple SEIKO EPSON printer drivers for Windows OS are configured with an improper access permission settings when installed or used in a language other than English. If a user is directed to place a crafted DLL file in a location of an a…
- CVE-2025-4280MEDIUMCVSS 4.8EG 4.82025-05-22
MacOS version of Poedit bundles a Python interpreter that inherits the Transparency, Consent, and Control (TCC) permissions granted by the user to the main application bundle. An attacker with local user access can invoke this interpreter…
- CVE-2025-43350LOWCVSS 2.4EG 7.52025-11-04
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.1 and iPadOS 26.1. An attacker may be able to view restricted content from the lock screen.
- CVE-2025-43442LOWCVSS 3.3EG 7.52025-11-04
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1. An app may be able to identify what other apps a user has installed.
- CVE-2025-43444MEDIUMCVSS 5.3EG 5.32025-11-04
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. An app may be able to fingerprint the …
Map vulnerabilities like CWE-276 to your infrastructure
EchelonGraph correlates every CVE — across CWE-276 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →