Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-266 (特权授予不正确) — Vulnerability Class 382

382 vulnerabilities classified as CWE-266 (特权授予不正确). AI Chinese analysis included.

CWE-266 represents a critical access control weakness where software incorrectly assigns privileges to an actor, granting them an unintended sphere of control. This flaw typically arises from flawed logic in role-based or discretionary access control mechanisms, allowing users to perform actions beyond their authorized scope. Attackers exploit this by manipulating input parameters or session tokens to escalate privileges, effectively bypassing security boundaries to access sensitive data or execute administrative functions. To prevent such vulnerabilities, developers must implement robust, centralized authorization checks that verify permissions at every critical point of execution rather than relying on client-side validations. Adhering to the principle of least privilege ensures that actors receive only the minimum access necessary for their specific tasks. Rigorous code reviews and automated security testing further help identify incorrect privilege assignments before deployment, maintaining strict integrity over system resources.

MITRE CWE Description
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Common Consequences (1)
Access ControlGain Privileges or Assume Identity
A user can access restricted functionality and/or sensitive information that may include administrative functionality and user accounts.
Mitigations (2)
Architecture and Design, OperationVery carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
Architecture and Design, OperationRun your code using the lowest privileges that are required to accomplish the necessary tasks [REF-76]. If possible, create isolated accounts with limited privileges that are only used for a single task. That way, a successful attack will not immediately give the attacker access to the rest of the software or its environment. For example, database applications rarely need to run as the database ad…
Examples (2)
The following example demonstrates the weakness.
seteuid(0); /* do some stuff */ seteuid(getuid());
Bad · C
The following example demonstrates the weakness.
AccessController.doPrivileged(new PrivilegedAction() { public Object run() { // privileged code goes here, for example: System.loadLibrary("awt"); return null; // nothing to return }
Bad · Java
CVE IDTitleCVSSSeverityPublished
CVE-2026-8148 NAVER MYBOX Explorer 3.0.11.160前 权限提升漏洞 — NAVER MYBOX Explorer--2026-05-08
CVE-2026-43510 CISA manage.get.gov insecure portfolio administrative privileges — manage.get.gov 7.6 High2026-05-07
CVE-2026-43535 OpenClaw < 2026.4.14 - Authorization Context Reuse in Collect-Mode Queue Batches — OpenClaw 6.8 Medium2026-05-05
CVE-2026-42368 GeoVision LPC2011/LPC2211 Web Interface privilege escalation vulnerability — GV-LPC2011/LPC2211 9.9 Critical2026-05-04
CVE-2026-22337 WordPress Directorist Social Login plugin < 2.1.4 - Privilege Escalation vulnerability — Directorist Social Login 9.8 Critical2026-04-27
CVE-2026-33519 Incorrect privilege assignment in Portal for ArcGIS — Portal for ArcGIS 9.8 Critical2026-04-21
CVE-2026-33518 Incorrect privilege assignment in Portal for ArcGIS — Portal for ArcGIS 9.8 Critical2026-04-21
CVE-2026-40869 Decidim amendments can be accepted or rejected by anyone — decidim 7.5 High2026-04-21
CVE-2026-27668 Siemens RUGGEDCOM CROSSBOW Secure Access Manager Primary 安全漏洞 — RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) 8.8 High2026-04-14
CVE-2026-27102 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.6 Medium2026-04-08
CVE-2026-32916 OpenClaw 2026.3.7 < 2026.3.11 - Authorization Bypass in Plugin Subagent Routes via Synthetic Admin Scopes — OpenClaw 9.4 Critical2026-03-31
CVE-2026-32922 OpenClaw < 2026.3.11 - Privilege Escalation via Unvalidated Scope in device.token.rotate — OpenClaw 9.9 Critical2026-03-29
CVE-2026-3121 Keycloak: org.keycloak/keycloak-services: keycloak: privilege escalation via manage-clients permission — Red Hat build of Keycloak 26.4 6.5 Medium2026-03-26
CVE-2026-1712 HYPR Server 安全漏洞 — Server 8.8 -2026-03-25
CVE-2026-32530 WordPress Creator LMS plugin <= 1.1.18 - Privilege Escalation vulnerability — Creator LMS 8.8 High2026-03-25
CVE-2026-32520 WordPress RewardsWP plugin <= 1.0.4 - Privilege Escalation vulnerability — RewardsWP 9.8 Critical2026-03-25
CVE-2026-32519 WordPress Bit SMTP plugin <= 1.2.2 - Broken Authentication vulnerability — Bit SMTP 9.0 Critical2026-03-25
CVE-2026-32488 WordPress User Registration plugin <= 4.4.9 - Privilege Escalation vulnerability — User Registration 8.1 High2026-03-25
CVE-2026-27051 WordPress Golo theme <= 1.7.0 - Privilege Escalation vulnerability — Golo 9.8 Critical2026-03-25
CVE-2026-25414 WordPress WPBookit Pro plugin <= 1.6.18 - Privilege Escalation vulnerability — WPBookit Pro 8.8 High2026-03-25
CVE-2026-25334 WordPress Salon Booking System Pro plugin < 10.30.12 - Account Takeover vulnerability — Salon Booking System Pro 8.1 High2026-03-25
CVE-2026-24971 WordPress Search & Go theme <= 2.8 - Privilege Escalation vulnerability — Search & Go 9.8 Critical2026-03-25
CVE-2026-24968 WordPress Xagio SEO plugin <= 7.1.0.30 - Privilege Escalation vulnerability — Xagio SEO 9.8 Critical2026-03-25
CVE-2026-24373 WordPress RegistrationMagic plugin <= 6.0.7.1 - Account Takeover vulnerability — RegistrationMagic 8.1 High2026-03-25
CVE-2026-20110 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE Software 6.5 Medium2026-03-25
CVE-2026-27542 WordPress Woocommerce Wholesale Lead Capture plugin <= 2.0.3.1 - Privilege Escalation vulnerability — Woocommerce Wholesale Lead Capture 9.8 Critical2026-03-19
CVE-2026-27541 WordPress Wholesale Suite plugin <= 2.2.6 - Privilege Escalation vulnerability — Wholesale Suite 7.2 High2026-03-05
CVE-2026-27983 WordPress LMS Elementor Pro plugin <= 1.0.4 - Privilege Escalation vulnerability — LMS Elementor Pro 9.8 Critical2026-03-05
CVE-2026-24963 WordPress Amelia plugin <= 1.2.38 - Privilege Escalation vulnerability — Amelia 7.2 High2026-03-05
CVE-2026-21425 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2026-03-04

Vulnerabilities classified as CWE-266 (特权授予不正确) represent 382 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.