Login Sign Up

CWE-278: CWE-278

3
Total CVEs
0
Critical
3
High
8.5
Avg CVSS

Yearly Trend

2024
2
2023
1

Top Affected Vendors

1 Fedoraproject 1
2 Chaos Mesh 1
3 Rust Lang 1
4 B1ackc4t 1

All CWE-278 CVEs (3)

CVE-2024-36538
8.8

This vulnerability in Chaos Mesh v2.6.3 involves insecure permissions that allow attackers to access service account tokens. Attackers can use these t...

Jul 24, 2024
CVE-2024-37769
8.8

CVE-2024-37769 is an insecure permissions vulnerability in 14Finger v1.1 that allows attackers to escalate privileges from normal user to Administrato...

Jul 5, 2024
CVE-2023-38497
7.9

Cargo, Rust's package manager, didn't respect the umask when extracting crate archives on UNIX-like systems, allowing local users to modify downloaded...

Aug 4, 2023

About CWE-278 (CWE-278)

Our database tracks 3 CVEs classified as CWE-278, with 0 rated critical and 3 rated high severity. The average CVSS score for CWE-278 vulnerabilities is 8.5.

External reference: View CWE-278 on MITRE CWE →

Monitor CWE-278 Vulnerabilities

Get alerted when new CWE-278 CVEs affect your infrastructure.

Start Monitoring Free