Fallos del tipo CWE-278

6 resultados

CVE-2023-38497HIGHCargo not respecting umask when extracting crate archivesEPSS 0.8%CVE-2024-36538HIGHInsecure permissions in chaos-mesh v2.6.3 allows attackers to access sensitive data and escalate privileges by obtaining the service accountEPSS 0.6%CVE-2024-37769HIGHInsecure permissions in 14Finger v1.1 allow attackers to escalate privileges from normal user to Administrator via a crafted POST request.EPSS 0.5%CVE-2025-2947HIGHIBM i privilege escalationEPSS 0.4%CVE-2026-6265HIGHLocal Privilege Escalation in Cerberus FTP Server =< 2025.4.2EPSS 0.3%CVE-2024-38531LOWNix sandbox escapeEPSS 0.1%