CWE-276: Incorrect Default Permissions — known CVE vulnerabilities
CVEs classified under CWE-276 (Incorrect Default Permissions), ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2022-42150 — CVSS 10.0 (critical): TinyLab linux-lab v1.1-rc1 and cloud-labv0.8-rc2, v1.1-rc1 are vulnerable to insecure permissions. The default configuration could cause…
CVE-2020-29492 — CVSS 10.0 (critical): Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unauthenticated attacker could…
CVE-2020-29491 — CVSS 10.0 (critical): Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unauthenticated attacker could…
CVE-2025-40585 — CVSS 9.9 (critical): A vulnerability has been identified in Energy Services (All versions with G5DFR). Affected solutions using G5DFR contain default…
CVE-2019-19896 — CVSS 9.9 (critical): In IXP EasyInstall 6.2.13723, there is Remote Code Execution via weak permissions on the Engine Service share. The default file permissions…
CVE-2020-37129 — CVSS 9.8 (critical): Memu Play 7.1.3 contains an insecure folder permissions vulnerability that allows low-privileged users to modify the MemuService.exe…
CVE-2025-60262 — CVSS 9.8 (critical): An issue in H3C M102G HM1A0V200R010 wireless controller and BA1500L SWBA1A0V100R006 wireless access point, there is a misconfiguration…
CVE-2024-43166 — CVSS 9.8 (critical): Incorrect Default Permissions vulnerability in Apache DolphinScheduler. This issue affects Apache DolphinScheduler: before 3.2.2. Users are…
CVE-2025-8031 — CVSS 9.8 (critical): The `username:password` part was not correctly stripped from URLs in CSP reports potentially leaking HTTP Basic Authentication credentials…
CVE-2014-7210 — CVSS 9.8 (critical): pdns specific as packaged in Debian in version before 3.3.1-1 creates a too privileged MySQL user. It was discovered that the maintainer…
CVE-2025-6179 — CVSS 9.8 (critical): Permissions Bypass in Extension Management in Google ChromeOS 16181.27.0 on managed Chrome devices allows a local attacker to disable…
CVE-2025-4660 — CVSS 9.8 (critical): A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named…
CVE-2025-30465 — CVSS 9.8 (critical): A permissions issue was addressed with improved validation. This issue is fixed in iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sequoia 15.7.2…
CVE-2025-24238 — CVSS 9.8 (critical): A logic issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5…
CVE-2025-24207 — CVSS 9.8 (critical): A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS…
CVE-2025-24195 — CVSS 9.8 (critical): An integer overflow was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS…
CVE-2025-24172 — CVSS 9.8 (critical): A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5…
CVE-2025-25535 — CVSS 9.8 (critical): HTTP Response Manipulation in SCRIPT CASE v.1.0.002 Build7 allows a remote attacker to escalate privileges via a crafted request.
CVE-2024-53351 — CVSS 9.8 (critical): Insecure permissions in pipecd v0.49 allow attackers to gain access to the service account's token, leading to escalation of privileges.
CVE-2025-27154 — CVSS 9.8 (critical): Spotipy is a lightweight Python library for the Spotify Web API. The `CacheHandler` class creates a cache file to store the auth token…
CVE-2024-56525 — CVSS 9.8 (critical): In Public Knowledge Project (PKP) OJS, OMP, and OPS before 3.3.0.21 and 3.4.x before 3.4.0.8, an XXE attack by the Journal Editor Role can…
CVE-2024-57604 — CVSS 9.8 (critical): An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component.
CVE-2024-55215 — CVSS 9.8 (critical): An issue in trojan v.2.0.0 through v.2.15.3 allows a remote attacker to escalate privileges via the initialization interface /auth/register.
CVE-2025-24093 — CVSS 9.8 (critical): A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.3, macOS…
CVE-2024-57684 — CVSS 9.8 (critical): An access control issue in the component formDMZ.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the…
CVE-2024-55225 — CVSS 9.8 (critical): An issue in the component src/api/identity.rs of Vaultwarden prior to v1.32.5 allows attackers to impersonate users, including…
CVE-2022-41572 — CVSS 9.8 (critical): An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Privilege escalation can be accomplished on the server because nmap can be…
CVE-2024-45494 — CVSS 9.8 (critical): An issue was discovered in MSA FieldServer Gateway 5.0.0 through 6.5.2 (Fixed in 7.0.0). The FieldServer Gateway has an internally used…
CVE-2024-54751 — CVSS 9.8 (critical): COMFAST CF-WR630AX v2.7.0.2 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in…
CVE-2024-54747 — CVSS 9.8 (critical): WAVLINK WN531P3 202383 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as…
CVE-2024-54745 — CVSS 9.8 (critical): WAVLINK WN701AE M01AE_V240305 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in…
CVE-2024-46054 — CVSS 9.8 (critical): OpenVidReview 1.0 is vulnerable to Incorrect Access Control. The /upload route is accessible without authentication, allowing any user to…
CVE-2018-9467 — CVSS 9.8 (critical): In the getHost() function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect…
CVE-2023-27195 — CVSS 9.8 (critical): Trimble TM4Web 22.2.0 allows unauthenticated attackers to access /inc/tm_ajax.msw?func=UserfromUUID&uuid= to retrieve the last registration…
CVE-2022-30355 — CVSS 9.8 (critical): OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile via the userId…
CVE-2024-48823 — CVSS 9.8 (critical): Local file inclusion in Automatic Systems Maintenance SlimLane 29565_d74ecce0c1081d50546db573a499941b10799fb7 allows a remote attacker to…
CVE-2024-28056 — CVSS 9.8 (critical): Amazon AWS Amplify CLI before 12.10.1 incorrectly configures the role trust policy of IAM roles associated with Amplify projects. When the…
CVE-2023-46773 — CVSS 9.8 (critical): Permission management vulnerability in the PMS module. Successful exploitation of this vulnerability may cause privilege escalation.
CVE-2023-21216 — CVSS 9.8 (critical): In PMRChangeSparseMemOSMem of physmem_osmem_linux.c, there is a possible arbitrary code execution due to a use after free. This could lead…
CVE-2023-47462 — CVSS 9.8 (critical): Insecure Permissions vulnerability in GL.iNet AX1800 v.3.215 and before allows a remote attacker to execute arbitrary code via the file…
CVE-2023-48648 — CVSS 9.8 (critical): Concrete CMS before 8.5.13 and 9.x before 9.2.2 allows unauthorized access because directories can be created with insecure permissions…
CVE-2023-43902 — CVSS 9.8 (critical): Incorrect access control in the Forgot Your Password function of EMSigner v2.8.7 allows unauthenticated attackers to access accounts of all…
CVE-2023-27133 — CVSS 9.8 (critical): TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www…
CVE-2023-31068 — CVSS 9.8 (critical): An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories…
CVE-2023-31067 — CVSS 9.8 (critical): An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories…
CVE-2023-33745 — CVSS 9.8 (critical): TeleAdapt RoomCast TA-2400 1.0 through 3.1 is vulnerable to Improper Privilege Management: from the shell available after an adb…
CVE-2023-31116 — CVSS 9.8 (critical): An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. An incorrect default permission can cause…