CWE•Base•Draft•20 recent CVEs
CWE-552Files or Directories Accessible to External Parties
Description
The product makes files or directories accessible to unauthorized actors, even though they should not be.
[object Object]
Common consequences
- Confidentiality,Integrity→Read Files or Directories,Modify Files or Directories
Potential mitigations
- Implementation,System Configuration,OperationWhen storing data in the cloud (e.g., S3 buckets, Azure blobs, Google Cloud Storage, etc.), use the provider's controls to disable public access.
Related CWEs
Recent CVEs classified under this CWE
CVE-2025-147719.92026-06-03CVE-2026-455435.32026-06-01CVE-2026-404255.72026-05-29CVE-2026-450887.52026-05-27CVE-2024-564627.22026-05-27CVE-2024-113996.82026-05-27CVE-2026-457219.02026-05-26CVE-2026-405646.52026-05-26CVE-2026-87046.52026-05-15CVE-2026-333806.32026-05-13CVE-2026-420634.92026-05-13CVE-2026-406318.72026-05-13CVE-2026-354405.52026-05-12CVE-2026-321855.52026-05-12CVE-2026-312169.12026-05-12CVE-2026-312159.12026-05-12CVE-2026-398717.52026-05-11CVE-2026-78176.52026-05-11CVE-2026-64184.92026-05-05CVE-2026-53355.32026-05-04