Weaknesses of type CWE-276
907 resultsCVE-2024-46465HIGHBy default, dedicated folders of CRYHOD for Windows up to 2024.3 can be accessed by other users to misuse technical files and make them perfEPSS 0.2%CVE-2024-46467HIGHBy default, dedicated folders of ZONEPOINT for Windows up to 2024.1 can be accessed by other users to misuse technical files and make them pEPSS 0.2%CVE-2018-25359HIGHSplinterware System Scheduler Pro 5.12 Privilege EscalationEPSS 0.2%CVE-2024-46462HIGHBy default, dedicated folders of ZEDMAIL for Windows up to 2024.3 can be accessed by other users to misuse technical files and make them perEPSS 0.2%CVE-2024-46466HIGHBy default, dedicated folders of ZONECENTRAL for Windows up to 2024.3 or up to Q.2021.2 (ANSSI qualification submission) can be accessed by EPSS 0.2%CVE-2024-46463HIGHBy default, dedicated folders of ORIZON for Windows up to 2024.3 can be accessed by other users to misuse technical files and make them perfEPSS 0.2%CVE-2024-11468HIGHOmnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to a flaw in the installation process. SuccesEPSS 0.2%CVE-2024-0833HIGHPrivilege Elevation via Telerik Test StudioEPSS 0.2%CVE-2025-57853MEDIUMWeb-terminal: privilege escalation via excessive /etc/passwd permissionsEPSS 0.2%CVE-2023-31349HIGHIncorrect default permissions in the AMD μProf installation directory could allow an attacker to achieve privilege escalation, potentially rEPSS 0.2%CVE-2023-33240HIGHFoxit PDF Reader (12.1.1.15289 and earlier) and Foxit PDF Editor (12.1.1.15289 and all previous 12.x versions, 11.2.5.53785 and all previousEPSS 0.2%CVE-2023-48678MEDIUMSensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis Cyber Protect 16 (Linux, WEPSS 0.2%CVE-2023-32221HIGHEaseUS Todo Backup may allow local privilege escalationEPSS 0.2%CVE-2025-49842LOWconda-forge-webservices Privilege Escalation Risk via Default Docker Root UserEPSS 0.2%CVE-2024-4229HIGHIncorrect Default Permissions vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software forEPSS 0.2%CVE-2023-38291HIGHAn issue was discovered in a third-party component related to ro.boot.wifimacaddr, shipped on devices from multiple device manufacturers. VaEPSS 0.2%CVE-2024-42053HIGHThe MSI installer for Splashtop Streamer for Windows before 3.6.0.0 uses a temporary folder with weak permissions during installation. A locEPSS 0.2%CVE-2022-3884HIGHDirectory Permission Vulnerability in Hitachi Ops Center AnalyzerEPSS 0.2%CVE-2023-46270LOWMacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine attributes for extracted items.EPSS 0.2%CVE-2024-42028HIGHA Local privilege escalation vulnerability found in a Self-Hosted UniFi Network Server with UniFi Network Application (Version 8.4.62 and eaEPSS 0.2%