CWE-282: CWE-282

Total CVEs

Critical

High

6.4

Avg CVSS

Yearly Trend

2025

2024

2023

2022

Top Affected Vendors

1 Linux 1

2 Netapp 1

3 Debian 1

4 Canonical 1

5 Jenkins 1

6 Lenovo 1

7 Framasoft 1

8 Node Access Rebuild Progressive Project 1

9 Emerson 1

All CWE-282 CVEs (7)

CVE-2020-10632

8.8

This vulnerability in Emerson OpenEnterprise allows attackers with local access to modify critical configuration files due to inadequate folder permis...

Feb 24, 2022

CVE-2025-27254

8.0

CVE-2025-27254 is an authentication bypass vulnerability in GE Vernova EnerVista UR Setup software. Attackers can disable startup authentication by mo...

Mar 10, 2025

CVE-2023-0386

7.8

This Linux kernel vulnerability allows local users to escalate privileges by exploiting a uid mapping bug in OverlayFS when copying capable files betw...

Mar 22, 2023

CVE-2024-45104

6.3

This vulnerability allows authenticated Lenovo XClarity Administrator (LXCA) users with insufficient privileges to modify managed devices through a sp...

Sep 13, 2024

CVE-2024-13249

5.4

This vulnerability in Drupal's Node Access Rebuild Progressive module allows attackers to influence target selection through framing techniques, poten...

Jan 9, 2025

CVE-2025-67642

4.3

The Jenkins HashiCorp Vault Plugin vulnerability allows attackers with Item/Configure permission to access Vault credentials they shouldn't have acces...

Dec 10, 2025

CVE-2025-32945

4.3

This vulnerability allows authenticated PeerTube users to create playlists in other users' channels without authorization. It affects PeerTube instanc...

Apr 15, 2025

About CWE-282 (CWE-282)

Our database tracks 7 CVEs classified as CWE-282, with 0 rated critical and 3 rated high severity. The average CVSS score for CWE-282 vulnerabilities is 6.4.

External reference: View CWE-282 on MITRE CWE →

Monitor CWE-282 Vulnerabilities

Get alerted when new CWE-282 CVEs affect your infrastructure.

Start Monitoring Free