CWE-281 - Improper preservation of permissions

Description

The software does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

Latest vulnerabilities for CWE-281

Multiple vulnerabilities in IBM Sterling Order Management 2024-04-16
High Yes

Multiple vulnerabilities in IBM Watson Machine Learning Accelerator on Cloud Pak for Data 2023-12-11
High Yes

Multiple vulnerabilities in Oracle Linux 2023-10-18
Critical Yes

Multiple vulnerabilities in IBM MQ Operator 2023-08-28
High Yes

Multiple vulnerabilities in Dell Data Protection Central 2023-08-16
High Yes

Multiple vulnerabilities in Dell Container Storage Modules 2023-08-09
High Yes

Multiple vulnerabilities in Dell Unity, Dell UnityVSA, and Dell Unity XT 2023-08-08
High Yes

Multiple vulnerabilities in IBM MQ Operator and Queue manager container images 2023-08-01
High Yes

Multiple vulnerabilities in IBM Cloud Kubernetes Service 2023-06-13
Medium Yes

Multiple vulnerabilities in IBM Cloud Pak for Watson AIOps 2023-06-01
High Yes

References

Description of CWE-281 on Mitre website