CWE-281: Improper Preservation of Permissions
low-riskThe product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.
Abstraction: Base
Common Consequences
Confidentiality
→
Read Application Data
Real-World Examples (10)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2017-8543 | 9.8 | 83.8% | Y |
| CVE-2017-8543 | 9.8 | 83.8% | Y |
| CVE-2024-46310 | 9.1 | 83.0% | — |
| CVE-2021-33990 | 9.8 | 56.2% | — |
| CVE-2023-34034 | 9.1 | 47.9% | — |
| CVE-2022-1227 | 8.8 | 33.7% | — |
| CVE-2017-8589 | 9.8 | 28.4% | — |
| CVE-2017-8563 | 8.1 | 17.9% | — |
| CVE-2022-38577 | 8.8 | 14.0% | — |
| CVE-2022-38577 | 8.8 | 14.0% | — |
3
/ 100
low-risk
Active Threat
3/50 · Minimal
Exploit Availability
0/50 · Minimal