Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

CWE-264 (权限、特权和访问控制) — Vulnerability Class 277

277 vulnerabilities classified as CWE-264 (权限、特权和访问控制). AI Chinese analysis included.

This page documents security vulnerabilities associated with the Common Weakness Enumeration identifier CWE-264, specifically concerning permission and access control issues. It aggregates data from multiple software vendors and product lines to provide a comprehensive view of how this specific weakness manifests across different technology stacks. The collection includes detailed reports on various flaw types where incorrect handling of security permissions leads to unauthorized access, privilege escalation, or information disclosure. The time range covered spans several years, allowing analysts to observe trends and long-term remediation efforts by major technology providers. Readers can use this resource to track individual vendor advisories as they are issued, helping teams stay updated on specific patches or workarounds. Furthermore, the page serves as a reference for understanding the broader characteristics and impacts of the CWE-264 weakness class in software development and security auditing. Users can also look up a specific product’s vulnerability history to identify past incidents and assess the overall security posture of a system over time. This structured approach facilitates better risk management by highlighting recurring patterns in how permission checks are implemented or bypassed. By consolidating these disparate reports, the page aims to support security professionals in identifying root causes and implementing more robust access control mechanisms in their own environments. The information is presented in a neutral format, focusing on factual details regarding the nature of the flaws, affected versions, and resolution statuses without speculation or opinion.

CVE IDTitleCVSSSeverityPublished
CVE-2026-41962 Huawei HarmonyOS 权限许可和访问控制问题漏洞 — HarmonyOS 3.6 Low2026-05-15
CVE-2026-20046 Cisco IOS XR Software CLI Privilege Escalation Vulnerability — Cisco IOS XR Software 8.8 High2026-03-11
CVE-2026-28541 Huawei HarmonyOS 安全漏洞 — HarmonyOS 4.0 Medium2026-03-05
CVE-2025-66319 Huawei HarmonyOS 安全漏洞 — HarmonyOS 3.3 Low2026-03-05
CVE-2026-24924 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.1 Medium2026-02-06
CVE-2026-24920 Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2 Medium2026-02-06
CVE-2026-24931 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.9 Medium2026-02-06
CVE-2026-24923 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.3 Medium2026-02-06
CVE-2025-68967 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.7 Medium2026-01-14
CVE-2025-66329 Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS 4.0 Medium2025-12-08
CVE-2025-66325 Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2 Medium2025-12-08
CVE-2025-58302 Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS 8.4 High2025-11-28
CVE-2025-58294 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2 Medium2025-11-28
CVE-2025-58315 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.5 Medium2025-11-28
CVE-2025-58312 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.1 Medium2025-11-28
CVE-2025-58309 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.8 Medium2025-11-28
CVE-2025-64315 Huawei HarmonyOS 安全漏洞 — HarmonyOS 4.4 Medium2025-11-28
CVE-2025-58293 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.5 Medium2025-10-11
CVE-2025-58285 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.3 Medium2025-10-11
CVE-2025-58284 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.9 Medium2025-10-11
CVE-2025-58283 Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.5 Medium2025-10-11
CVE-2025-58282 Huawei HarmonyOS 安全漏洞 — HarmonyOS 2.8 Low2025-10-11
CVE-2025-54654 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2 Medium2025-10-11
CVE-2025-58276 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.8 Medium2025-09-05
CVE-2025-54608 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2 Medium2025-08-06
CVE-2025-53186 Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS 5.9 Medium2025-07-07
CVE-2025-53178 Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS 4.8 Medium2025-07-07
CVE-2025-53177 Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS 3.9 Low2025-07-07
CVE-2025-48903 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.8 High2025-06-06
CVE-2025-46587 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2 Medium2025-05-06

Vulnerabilities classified as CWE-264 (权限、特权和访问控制) represent 277 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.