VYPR

CWE-276

Incorrect Default Permissions

BaseDraftLikelihood: Medium

Description

During installation, installed file permissions are set to allow anyone to modify those files.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-1 · CAPEC-127 · CAPEC-81

CVEs mapped to this weakness (474)

page 16 of 24
  • CVE-2018-12160MedSep 12, 2018
    risk 0.34cvss 5.3epss 0.00

    DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access.

  • CVE-2025-46803MedMay 26, 2025
    risk 0.33cvss 5.0epss 0.00

    The default mode of pseudo terminals (PTYs) allocated by Screen was changed from 0620 to 0622, thereby allowing anyone to write to any Screen PTYs in the system.

  • CVE-2024-52783MedJan 15, 2025
    risk 0.33cvss 5.1epss 0.00

    Insecure permissions in the XNetSocketClient component of XINJE XDPPro.exe v3.2.2 to v3.7.17c allows attackers to execute arbitrary code via modification of the configuration file.

  • CVE-2024-5321MedJul 18, 2024
    risk 0.33cvss 6.1epss 0.00

    A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\Users may be able to read container logs and NT AUTHORITY\Authenticated Users may be able to modify container logs.

  • CVE-2024-41820MedAug 5, 2024
    risk 0.32cvss 6.0epss 0.00

    Kubean is a cluster lifecycle management toolchain based on kubespray and other cluster LCM engine. The ClusterRole has `*` verbs of `*` resources. If a malicious user can access the worker node which has kubean's deployment, he/she can abuse these excessive permissions to do…

  • CVE-2025-15615MedMar 27, 2026
    risk 0.31cvss 5.8epss 0.01

    Wazuh Manager authd service in wazuh-manager packages through version 4.7.3 contains an improper restriction of client-initiated SSL/TLS renegotiation vulnerability that allows remote attackers to cause a denial of service by sending excessive renegotiation requests. Attackers…

  • CVE-2026-32983MedMar 27, 2026
    risk 0.31cvss 5.8epss 0.00

    Wazuh Manager authd service in wazuh-manager packages through version 4.7.3 contains an improper restriction of client-initiated SSL/TLS renegotiation vulnerability that allows remote attackers to cause a denial of service by sending excessive renegotiation requests. Attackers…

  • CVE-2025-15523MedJan 22, 2026
    risk 0.31cvss epss 0.00

    MacOS version of Inkscape bundles a Python interpreter that inherits the Transparency, Consent, and Control (TCC) permissions granted by the user to the main application bundle. An attacker with local user access can invoke this interpreter with arbitrary commands or scripts,…

  • CVE-2025-9190MedAug 26, 2025
    risk 0.31cvss epss 0.00

    The configuration of Cursor on macOS, specifically the "RunAsNode" fuse enabled, allows a local attacker with unprivileged access to execute arbitrary code that inherits Cursor TCC (Transparency, Consent, and Control) permissions. Acquired resource access is limited to…

  • CVE-2025-53813MedAug 26, 2025
    risk 0.31cvss epss 0.00

    The configuration of Nozbe on macOS, specifically the "RunAsNode" fuse enabled, allows a local attacker with unprivileged access to execute arbitrary code that inherits Nozbe TCC (Transparency, Consent, and Control) permissions.  Acquired resource access is limited to…

  • CVE-2025-53811MedAug 26, 2025
    risk 0.31cvss epss 0.00

    The configuration of Mosh-Pro on macOS, specifically the "RunAsNode" fuse enabled, allows a local attacker with unprivileged access to execute arbitrary code that inherits Mosh-Pro TCC (Transparency, Consent, and Control) permissions.  Acquired resource access is limited to…

  • CVE-2025-5963MedJun 20, 2025
    risk 0.31cvss epss 0.00

    The Postbox's configuration on macOS, specifically the presence of entitlements: "com.apple.security.cs.allow-dyld-environment-variables" and "com.apple.security.cs.disable-library-validation" allows for Dynamic Library (Dylib) injection. A local attacker with unprivileged…

  • CVE-2025-4081MedMay 29, 2025
    risk 0.31cvss epss 0.00

    Use of entitlement "com.apple.security.cs.disable-library-validation" and lack of launch and library load constraints allows to substitute a legitimate dylib with malicious one. A local attacker with unprivileged access can execute the application with altered dynamic library…

  • CVE-2025-4412MedMay 27, 2025
    risk 0.31cvss epss 0.00

    On macOS systems, by utilizing a Launch Agent and loading the viscosity_openvpn process from the application bundle, it is possible to load a dynamic library with Viscosity's TCC (Transparency, Consent, and Control) identity. The acquired resource access is limited without…

  • CVE-2025-4280MedMay 22, 2025
    risk 0.31cvss epss 0.00

    MacOS version of Poedit bundles a Python interpreter that inherits the Transparency, Consent, and Control (TCC) permissions granted by the user to the main application bundle. An attacker with local user access can invoke this interpreter with arbitrary commands or scripts,…

  • CVE-2025-27612MedMar 21, 2025
    risk 0.31cvss 5.9epss 0.00

    libcontainer is a library for container control. Prior to libcontainer 0.5.3, while creating a tenant container, the tenant builder accepts a list of capabilities to be added in the spec of tenant container. The logic here adds the given capabilities to all capabilities of main…

  • CVE-2018-14650MedSep 27, 2018
    risk 0.31cvss 5.9epss 0.00

    It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files created by the tool readable by any local user. A local attacker may use this flaw by waiting for a legit user to run sos-collector and steal the collected…

  • CVE-2026-53856MedJun 16, 2026
    risk 0.29cvss 5.5epss 0.00

    OpenClaw before 2026.4.24 contains an insecure file permissions vulnerability in config recovery that restores OpenClaw.json with overly broad permissions. Local attackers on shared hosts can read sensitive configuration data by exploiting the recovery path to access the…

  • CVE-2024-0245MedMar 20, 2025
    risk 0.29cvss 5.5epss 0.00

    A misconfiguration in the AndroidManifest.xml file in hamza417/inure before build97 allows for task hijacking. This vulnerability permits malicious applications to inherit permissions of the vulnerable app, potentially leading to the exposure of sensitive information. An…

  • CVE-2024-22385MedJun 25, 2024
    risk 0.29cvss 4.4epss 0.00

    Incorrect Default Permissions vulnerability in Hitachi Storage Provider for VMware vCenter allows local users to read and write specific files.This issue affects Hitachi Storage Provider for VMware vCenter: from 3.1.0 before 3.7.4.