[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CWE
view XML

Permission Issues

ID: 275Date: (C)2012-05-14   (M)2022-10-10
Type: categoryStatus: DRAFT





Description

Weaknesses in this category are related to improper assignment or handling of permissions.

Applicable Platforms
None

Related Attack Patterns

Common Consequences
None

Detection Methods
None

Potential Mitigations
None

Relationships

Related CWETypeViewChain
CWE-275 ChildOf CWE-632 Category CWE-631  

Demonstrative Examples
None

White Box Definitions
None

Black Box Definitions
None

Taxynomy Mappings

TaxynomyIdNameFit
PLOVER  Permission errors
 
 
OWASP Top Ten 2004 A2
 
Broken Access Control
 
CWE_More_Specific
 
OWASP Top Ten 2004 A10
 
Insecure Configuration Management
 
CWE_More_Specific
 

References:

  1. Michael Howard David LeBlanc John Viega .24 Deadly Sins of Software Security. McGraw-Hill. Section:'"Sin 17: Failure to Protect Stored Data." Page 253'. Published on 2010.
CVE    60
CVE-2016-0394
CVE-2016-10796
CVE-2016-10846
CVE-2016-10818
...

© SecPod Technologies