Weaknesses of type CWE-276
908 resultsCVE-2017-13311HIGHIn the read() function of ProcessStats.java, there is a possible read/write serialization issue leading to a permissions bypass. This could EPSS 0.1%CVE-2024-49732HIGHIn multiple functions of CompanionDeviceManagerService.java, there is a possible way to grant permissions without user consent due to a missEPSS 0.1%CVE-2017-13312HIGHIn createFromParcel of MediaCas.java, there is a possible parcel read/write mismatch due to improper input validation. This could lead to loEPSS 0.1%CVE-2024-49735HIGHIn multiple locations, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escaEPSS 0.1%CVE-2024-9858MEDIUMInsecure user permissions in Google Cloud Migrate to Containers for WindowsEPSS 0.1%CVE-2024-49724HIGHIn multiple functions of AccountManagerService.java, there is a possible way to bypass permissions and launch protected activities due to a EPSS 0.1%CVE-2026-24413MEDIUMIcinga has insecure permission of %ProgramData%\icinga2\var on WindowsEPSS 0.1%CVE-2026-57919HIGHPBackupVSS.exe in Matrix42 Empirum before 25.5 and 26.x before 26.2 creates a named pipe (\\.\pipe\PBackupVSS) with a DACL that grants GENEREPSS —