CWE-277 (不安全的继承权限) — Vulnerability Class 21

21 vulnerabilities classified as CWE-277 (不安全的继承权限). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-65111	SpiceDB's LookupResources with Multiple Entrypoints across Different Definitions Can Return Incomplete Results — spicedb	5.4	-	2025-11-21
CVE-2025-64185	Open OnDemand RPM packages create world writable locations — ondemand	-	-	2025-11-20
CVE-2025-11554	Portabilis i-Educar User Type AccessLevelController.php insecure inherited permissions — i-Educar	6.3	Medium	2025-10-09
CVE-2025-9039	Information Disclosure in Amazon ECS Container Agent — ECS	4.3	Medium	2025-08-14
CVE-2025-36104	IBM Storage Scale information disclosure — Storage Scale	6.5	Medium	2025-07-12
CVE-2025-32797	Conda-build Insecure Build Script Permissions Enabling Arbitrary Code Execution — conda-build	7.0^AI	High^AI	2025-06-16
CVE-2025-3473	IBM Security Guardium privilege escalation — Security Guardium	6.7	Medium	2025-06-11
CVE-2018-25111	Django-Helpdesk 安全漏洞 — django-helpdesk	5.1	Medium	2025-05-31
CVE-2025-31332	Insecure File permissions vulnerability in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence Platform	6.6	Medium	2025-04-08
CVE-2025-29982	Dell Wyse Management Suite WMS 安全漏洞 — Wyse Management Suite	6.8	Medium	2025-04-02
CVE-2024-51448	IBM Robotic Process Automation privilege escalation — Robotic Process Automation	6.7	Medium	2025-01-18
CVE-2024-45599	TCC Bypass in Cursor's macOS Application — cursor	3.8	Low	2024-09-24
CVE-2024-7143	Pulpcore: rbac permissions incorrectly assigned in tasks that create objects	8.1	-	2024-08-07
CVE-2023-29065	Overly Permissive Access Policy — FACSChorus	4.1	Medium	2023-11-28
CVE-2023-34391	Insecure Inherited Permissions — SEL-5033 AcSELerator RTAC Software	7.4	High	2023-08-31
CVE-2021-41170	Evaluation of closures can lead to execution of methods & functions in current program scope — neoan3-template	9.8	Critical	2021-11-08
CVE-2021-32725	Default share permissions not respected for federated reshares — security-advisories	3.5	Low	2021-07-12
CVE-2021-24032	Zstandard 安全漏洞 — Zstandard	5.5	-	2021-03-04
CVE-2021-24031	Zstandard 安全漏洞 — Zstandard	5.5	-	2021-03-04
CVE-2020-5343	Dell OS recovery image for Windows 安全漏洞 — CPG SW	7.3	High	2020-05-04
CVE-2019-5068	X11 Mesa 3D Graphics Library 安全漏洞 — Mesa 3D X11 Graphics library	5.1	-	2019-11-05

Vulnerabilities classified as CWE-277 (不安全的继承权限) represent 21 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-277 (不安全的继承权限) — Vulnerability Class 21