CWE-267 - Privilege Defined With Unsafe Actions

Abstraction:Base
Structure:Simple
Status:Incomplete

Release Date:2006-07-19
Latest Modification Date:2023-06-29

Weakness Name

Privilege Defined With Unsafe Actions

Description

A particular privilege, role, capability, or right can be used to perform unsafe actions that were not intended, even when it is assigned to the correct entity.

Common Consequences

Scope: Access Control

Impact: Gain Privileges or Assume Identity

Notes: A user can access restricted functionality and/or sensitive information that may include administrative functionality and user accounts.

CWE-267 - Privilege Defined With Unsafe Actions

Weakness Name

Description

Common Consequences

Related Weaknesses

Top Security News

Latest CVE List

Top Alert List

Common CWEs