Falhas do tipo CWE-276
908 resultadosCVE-2025-24914HIGHLocal Priviledge EscalationEPSS 0.1%CVE-2026-25931HIGHvscode-spell-checker has a workspace-trust bypass Code ExecutionEPSS 0.1%CVE-2025-46185MEDIUMAn Insecure Permission vulnerability in pgcodekeeper 10.12.0 allows a local attacker to obtain sensitive information via the plaintext storaEPSS 0.1%CVE-2022-20475HIGHIn test of ResetTargetTaskHelper.java, there is a possible hijacking of any app which sets allowTaskReparenting="true" due to a confused depEPSS 0.1%CVE-2025-54059MEDIUMmelange creates SBOM files in APKs with world-writable permissionsEPSS 0.1%CVE-2025-23105HIGHAn issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free in the mobile processor leads to privilegeEPSS 0.1%CVE-2024-6476MEDIUMGee-netics, member of the AXIS Camera Station Pro Bug Bounty Program has found that it is possible for a non-admin user to gain system priviEPSS 0.1%CVE-2025-12100HIGHMongoDB BI Connector ODBC driver installation via MSI may leave ACLs unset on custom installation directoriesEPSS 0.1%CVE-2025-24826MEDIUMLocal privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before buiEPSS 0.1%CVE-2026-44468HIGHIncorrect Default Permissions in CODESYS Development SystemEPSS 0.1%CVE-2024-26025MEDIUMIncorrect default permissions for some Intel(R) Advisor software before version 2024.1 may allow an authenticated user to potentially enableEPSS 0.1%CVE-2026-34450MEDIUMClaude SDK for Python: Insecure Default File Permissions in Local Filesystem Memory ToolEPSS 0.1%CVE-2025-11575HIGHMongoDB Atlas SQL ODBC driver installation via MSI may leave ACLs unset on custom installation directoriesEPSS 0.1%CVE-2026-12602HIGHIncorrect permissions in ArubaSign by ArubaEPSS 0.1%CVE-2025-55111MEDIUMBMC Control-M/Agent insecure default file permissionsEPSS 0.1%CVE-2024-27134HIGHExcessive directory permissions in MLflow leads to local privilege escalation when using spark_udfEPSS 0.1%CVE-2025-43725HIGHDell PowerProtect Data Manager, Generic Application Agent, version(s) 19.19 and 19.20, contain(s) an Incorrect Default Permissions vulnerabiEPSS 0.1%CVE-2026-23703HIGHThe installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrativEPSS 0.1%CVE-2025-53811MEDIUMTCC Bypass via misconfigured Node fuses in Mosh-ProEPSS 0.1%CVE-2025-53813MEDIUMTCC Bypass via misconfigured Node fuses in NozbeEPSS 0.1%