Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-276 (缺省权限不正确) — Vulnerability Class 448

448 vulnerabilities classified as CWE-276 (缺省权限不正确). AI Chinese analysis included.

CWE-276 represents a critical configuration weakness where software installation processes assign overly permissive access rights to files, often granting read, write, and execute privileges to all users. This flaw typically allows malicious actors to modify or replace critical application binaries, configuration files, or scripts without authentication. By altering these unprotected resources, attackers can inject malicious code, escalate privileges, or compromise system integrity, effectively bypassing security controls that rely on file integrity. To mitigate this risk, developers must adhere to the principle of least privilege during deployment. This involves explicitly setting restrictive permissions, such as read-only access for general users and write access only for administrators. Automated installation scripts should verify and enforce these secure defaults, ensuring that sensitive files remain immutable to unauthorized entities and preserving the overall security posture of the deployed environment.

MITRE CWE Description
During installation, installed file permissions are set to allow anyone to modify those files.
Common Consequences (1)
Confidentiality, IntegrityRead Application Data, Modify Application Data
Mitigations (2)
Architecture and Design, OperationThe architecture needs to access and modification attributes for files to only those users who actually require those actions.
Architecture and DesignCompartmentalize the system to have "safe" areas where trust boundaries can be unambiguously drawn. Do not allow sensitive data to go outside of the trust boundary and always be careful when interfacing with a compartment outside of the safe area. Ensure that appropriate compartmentalization is built into the system design, and the compartmentalization allows for and reinforces privilege separatio…
CVE IDTitleCVSSSeverityPublished
CVE-2025-22447 RSUPPORT RemoteView Agent 安全漏洞 — RemoteView Agent (for Windows) 7.8 -2025-03-06
CVE-2025-24864 RSUPPORT RemoteView Agent 安全漏洞 — RemoteView Agent (for Windows) 7.8 -2025-03-06
CVE-2024-58050 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2 Medium2025-03-04
CVE-2025-27154 Spotipy's cache file, containing spotify auth token, is created with overly broad permissions — spotipy 8.8 -2025-02-27
CVE-2025-21106 Dell RecoverPoint for Virtual Machines 安全漏洞 — RecoverPoint for VMs 5.5 Medium2025-02-20
CVE-2023-31360 AMD Integrated Management Technology 安全漏洞 — AIM-T(AMD Integrated Management Technology) software 7.3 High2025-02-11
CVE-2025-24795 The Snowflake Connector for Python uses insecure cache files permissions — snowflake-connector-python 4.4 Medium2025-01-29
CVE-2025-24788 Snowflake Connector for .NET has weak temporary files permissions — snowflake-connector-net 5.0 Medium2025-01-29
CVE-2025-24790 Snowflake JDBC uses insecure temporary credential cache file permissions — snowflake-jdbc 4.4 Medium2025-01-29
CVE-2025-0797 MicroWorld eScan Antivirus Quarantine Microworld default permission — eScan Antivirus 3.3 Low2025-01-29
CVE-2025-24826 Acronis Snap Deploy 安全漏洞 — Acronis Snap Deploy 7.8 -2025-01-28
CVE-2025-0543 G DATA Security Client Local privilege escalation — G DATA Security Client 7.8 High2025-01-25
CVE-2025-0542 G DATA Management Server Local privilege escalation — G DATA Management Server 7.8 High2025-01-25
CVE-2024-55930 Weak default folder permissions — Xerox Workplace Suite 6.7 Medium2025-01-23
CVE-2024-13206 REVE Antivirus reveinstall default permission — Antivirus 7.8 High2025-01-09
CVE-2024-13188 MicroWorld eScan Antivirus Installation var default permission — eScan Antivirus 5.3 Medium2025-01-08
CVE-2024-55950 Tabby has a TCC Bypass via Unnecessary Permissive Entitlements in Tabby — tabby 6.6 -2024-12-26
CVE-2024-12903 Incorrect default permissions in Biamp Evoko Home — Evoko Home Service 7.8 High2024-12-23
CVE-2024-4229 Edgecross Basic Software 安全漏洞 — Edgecross Basic Software for Windows 7.8 High2024-12-19
CVE-2024-11872 Epic Games Launcher Incorrect Default Permissions Local Privilege Escalation Vulnerability — Epic Games Launcher 7.8 -2024-12-11
CVE-2024-11598 Ivanti Application Control 安全漏洞 — Application Control 7.8 High2024-12-11
CVE-2024-11597 Ivanti Performance Manager 安全漏洞 — Performance Manager 7.8 High2024-12-11
CVE-2024-8496 Ivanti Workspace Control 安全漏洞 — Workspace Control 7.8 High2024-12-11
CVE-2024-9845 Ivanti Automation 安全漏洞 — Automation 7.8 High2024-12-11
CVE-2024-10251 Ivanti Security Control 安全漏洞 — Security Controls 7.8 High2024-12-11
CVE-2024-54131 Kolide Agent Privilege Escalation (Windows, Versions >= 1.5.3, < 1.12.3) — launcher 7.8 -2024-12-03
CVE-2024-11969 Incorrect default permissions in Cradlepoint NetCloud Exchange — NetCloud Exchange Client 8.8 High2024-11-28
CVE-2024-6476 AXIS Camera Station Pro 安全漏洞 — AXIS Camera Station Pro 4.2 Medium2024-11-26
CVE-2024-21958 AMD Provisioning Console 安全漏洞 — AMD Provisioning Console (APC) Software 7.3 High2024-11-12
CVE-2024-21957 AMD Management Console 安全漏洞 — AMD Management Console 7.3 High2024-11-12

Vulnerabilities classified as CWE-276 (缺省权限不正确) represent 448 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.