Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

CVEs (1,508)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-58046 1Huawei 1Harmonyos Sep 26, 2025 Mar 4, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Permission management vulnerability in the lock screen module Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2024-58044 1Huawei 2Emui Harmonyos Mar 5, 2025 Mar 4, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Permission verification bypass vulnerability in the notification module Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-27154 1Spotipy Project 1Spotipy Apr 7, 2025 Feb 27, 2025 8.4 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 Spotipy is a lightweight Python library for the Spotify Web API. The `CacheHandler` class creates a cache file to store the auth token. Prior to version 2.25.1, the file created has `rw-r--r--` (644) permissions by defau...Show more Spotipy is a lightweight Python library for the Spotify Web API. The `CacheHandler` class creates a cache file to store the auth token. Prior to version 2.25.1, the file created has `rw-r--r--` (644) permissions by default, when it could be locked down to `rw-------` (600) permissions. This leads to overly broad exposure of the spotify auth token. If this token can be read by an attacker (another user on the machine, or a process running as another user), it can be used to perform administrative actions on the Spotify account, depending on the scope granted to the token. Version 2.25.1 tightens the cache file permissions.Show less
CVE-2024-56525 - - Feb 25, 2025 Feb 24, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Public Knowledge Project (PKP) OJS, OMP, and OPS before 3.3.0.21 and 3.4.x before 3.4.0.8, an XXE attack by the Journal Editor Role can create a new role as super admin in the journal context, and insert a backdoor pl...Show more In Public Knowledge Project (PKP) OJS, OMP, and OPS before 3.3.0.21 and 3.4.x before 3.4.0.8, an XXE attack by the Journal Editor Role can create a new role as super admin in the journal context, and insert a backdoor plugin, by uploading a crafted XML document as a User XML Plugin.Show less
CVE-2025-21106 1Dell 1Recoverpoint For Virtual Machines Jul 31, 2025 Feb 20, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Dell Recover Point for Virtual Machines 6.0.X contains a Weak file system permission vulnerability. A low privileged Local attacker could potentially exploit this vulnerability, leading to impacting only non-sensitive re...Show more Dell Recover Point for Virtual Machines 6.0.X contains a Weak file system permission vulnerability. A low privileged Local attacker could potentially exploit this vulnerability, leading to impacting only non-sensitive resources in the system.Show less
CVE-2024-57604 1Mayswind 1Ezbookkeeping Jun 6, 2025 Feb 12, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the token component.
CVE-2024-51440 - - Mar 22, 2025 Feb 12, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue in Nothing Tech Nothing OS v.2.6 allows a local attacker to escalate privileges via the NtBpfService component.
CVE-2024-42419 - - Feb 12, 2025 Feb 12, 2025 5.4 MEDIUM· v4 6.7 MEDIUM· v3 N/A· v2 Incorrect default permissions for some Intel(R) GPA and Intel(R) GPA Framework software installers may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2024-32942 - - Feb 12, 2025 Feb 12, 2025 5.4 MEDIUM· v4 6.7 MEDIUM· v3 N/A· v2 Incorrect default permissions for some Intel(R) DSA installer for Windows before version 24.2.19.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2023-31360 - - Feb 11, 2025 Feb 11, 2025 N/A· v4 7.3 HIGH· v3 N/A· v2 Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability Service installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary c...Show more Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability Service installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.Show less
CVE-2024-55215 1Jrohy 1Trojan Jul 3, 2025 Feb 7, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in trojan v.2.0.0 through v.2.15.3 allows a remote attacker to escalate privileges via the initialization interface /auth/register.
CVE-2024-11468 - - Feb 5, 2025 Feb 4, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to a flaw in the installation process. Successful exploitation of this issue may allow attackers with user privileges to esca...Show more Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to a flaw in the installation process. Successful exploitation of this issue may allow attackers with user privileges to escalate their privileges to root on the system where the Horizon Client for macOS is installed.Show less
CVE-2025-24891 - - Jan 31, 2025 Jan 31, 2025 N/A· v4 9.6 CRITICAL· v3 N/A· v2 Dumb Drop is a file upload application. Users with permission to upload to the service are able to exploit a path traversal vulnerability to overwrite arbitrary system files. As the container runs as root by default, the...Show more Dumb Drop is a file upload application. Users with permission to upload to the service are able to exploit a path traversal vulnerability to overwrite arbitrary system files. As the container runs as root by default, there is no limit to what can be overwritten. With this, it's possible to inject malicious payloads into files ran on schedule or upon certain service actions. As the service is not required to run with authentication enabled, this may permit wholly unprivileged users root access. Otherwise, anybody with a PIN.Show less
CVE-2025-24795 1Snowflake 1Snowflake Connector Aug 25, 2025 Jan 29, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Sn...Show more The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. On Linux systems, when temporary credential caching is enabled, the Snowflake Connector for Python will cache temporary credentials locally in a world-readable file. This vulnerability affects versions 2.3.7 through 3.13.0. Snowflake fixed the issue in version 3.13.1.Show less
CVE-2025-24788 1Snowflake 1Snowflake Connector Aug 25, 2025 Jan 29, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 snowflake-connector-net is the Snowflake Connector for .NET. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for .NET in which files downloaded from stages are temporarily placed in a world...Show more snowflake-connector-net is the Snowflake Connector for .NET. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for .NET in which files downloaded from stages are temporarily placed in a world-readable local directory, making them accessible to unauthorized users on the same machine. This vulnerability affects versions 2.0.12 through 4.2.0 on Linux and macOS. Snowflake fixed the issue in version 4.3.0.Show less
CVE-2025-24790 1Snowflake 1Snowflake Jdbc Aug 25, 2025 Jan 29, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake JDBC Driver. On Linux sys...Show more Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect to Snowflake. Snowflake discovered and remediated a vulnerability in the Snowflake JDBC Driver. On Linux systems, when temporary credential caching is enabled, the Snowflake JDBC Driver will cache temporary credentials locally in a world-readable file. This vulnerability affects versions 3.6.8 through 3.21.0. Snowflake fixed the issue in version 3.22.0.Show less
CVE-2025-0797 1Escanav 1Escan Anti Virus Oct 9, 2025 Jan 29, 2025 4.8 MEDIUM· v4 3.3 LOW· v3 1.7 LOW· v2 A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been declared as problematic. This vulnerability affects unknown code of the file /var/Microworld/ of the component Quarantine Handler. The...Show more A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been declared as problematic. This vulnerability affects unknown code of the file /var/Microworld/ of the component Quarantine Handler. The manipulation leads to incorrect default permissions. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-24826 - - Jan 28, 2025 Jan 28, 2025 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before build 4625.
CVE-2024-57548 1Cmsimple 1Cmsimple Apr 11, 2025 Jan 27, 2025 N/A· v4 9.1 CRITICAL· v3 N/A· v2 CMSimple 5.16 allows the user to edit log.php file via print page.
CVE-2025-24176 1Apple 1Macos Apr 2, 2026 Jan 27, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 A permissions issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. A local attacker may be able to elevate their privileges.

Previous 1...131415...76 Next