Weaknesses of type CWE-276
905 resultsCVE-2026-47107HIGHWindmill < 1.703.2 Incorrect Default Permissions in nsjail ConfigurationEPSS 0.2%CVE-2024-6122MEDIUMIncorrect Default Directory Permissions for NI SystemLink Redis ServiceEPSS 0.2%CVE-2024-9191HIGHThe Okta Device Access features, provided by the Okta Verify agent for Windows, provides access to the OktaDeviceAccessPipe, which enables aEPSS 0.2%CVE-2022-4020HIGHAcer Aspire BIOS vulnerabilityEPSS 0.2%CVE-2022-27652—A flaw was found in cri-o, where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby (EPSS 0.2%CVE-2025-3617HIGHLocal Privilege Escalation in ThinManager®EPSS 0.2%CVE-2022-20456HIGHIn AutomaticZenRule of AutomaticZenRule.java, there is a possible failure to persist permissions settings due to resource exhaustion. This cEPSS 0.2%CVE-2020-11921HIGHAn issue was discovered in Lush 2 through 2020-02-25. Due to the lack of Bluetooth traffic encryption, it is possible to hijack an ongoing BEPSS 0.2%CVE-2025-24170HIGHA logic issue was addressed with improved file handling. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.EPSS 0.2%CVE-2023-49721MEDIUMAn insecure default to allow UEFI Shell in EDK2 was left enabled in LXD. This allows an OS-resident attacker to bypass Secure Boot.EPSS 0.2%CVE-2023-32404—This issue was addressed with improved entitlements. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, macOS Ventura 13.4. An apEPSS 0.2%CVE-2021-0235HIGHJunos OS: SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with SPC2/SPC3, vSRX Series: In a multi-tenant environment, a tenant host administrator may configure logical firewall isolation affecting other tenant networksEPSS 0.2%CVE-2021-0246HIGHJunos OS: SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with SPC2/SPC3: In a multi-tenant environment, a tenant host administrator may be able to jailbreak out of their network impacting other tenant networks or gather information from other networks.EPSS 0.2%CVE-2024-21946HIGHIncorrect default permissions in the AMD RyzenTM Master Utility installation directory could allow an attacker to achieve privilege escalatiEPSS 0.2%CVE-2024-21945HIGHIncorrect default permissions in the AMD RyzenTM Master monitoring SDK installation directory could allow an attacker to achieve privilege eEPSS 0.2%CVE-2023-32399—The issue was addressed with improved handling of caches. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS VenEPSS 0.2%CVE-2023-28192MEDIUMA permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur EPSS 0.2%CVE-2025-15334MEDIUMTanium addressed an information disclosure vulnerability in Threat Response.EPSS 0.2%CVE-2022-37018HIGHA potential vulnerability has been identified in the system BIOS for certain HP PC products which may allow escalation of privileges and codEPSS 0.2%CVE-2025-15335MEDIUMTanium addressed an information disclosure vulnerability in Threat Response.EPSS 0.2%