Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-266 (特权授予不正确) — Vulnerability Class 382

382 vulnerabilities classified as CWE-266 (特权授予不正确). AI Chinese analysis included.

CWE-266 represents a critical access control weakness where software incorrectly assigns privileges to an actor, granting them an unintended sphere of control. This flaw typically arises from flawed logic in role-based or discretionary access control mechanisms, allowing users to perform actions beyond their authorized scope. Attackers exploit this by manipulating input parameters or session tokens to escalate privileges, effectively bypassing security boundaries to access sensitive data or execute administrative functions. To prevent such vulnerabilities, developers must implement robust, centralized authorization checks that verify permissions at every critical point of execution rather than relying on client-side validations. Adhering to the principle of least privilege ensures that actors receive only the minimum access necessary for their specific tasks. Rigorous code reviews and automated security testing further help identify incorrect privilege assignments before deployment, maintaining strict integrity over system resources.

MITRE CWE Description
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Common Consequences (1)
Access ControlGain Privileges or Assume Identity
A user can access restricted functionality and/or sensitive information that may include administrative functionality and user accounts.
Mitigations (2)
Architecture and Design, OperationVery carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
Architecture and Design, OperationRun your code using the lowest privileges that are required to accomplish the necessary tasks [REF-76]. If possible, create isolated accounts with limited privileges that are only used for a single task. That way, a successful attack will not immediately give the attacker access to the rest of the software or its environment. For example, database applications rarely need to run as the database ad…
Examples (2)
The following example demonstrates the weakness.
seteuid(0); /* do some stuff */ seteuid(getuid());
Bad · C
The following example demonstrates the weakness.
AccessController.doPrivileged(new PrivilegedAction() { public Object run() { // privileged code goes here, for example: System.loadLibrary("awt"); return null; // nothing to return }
Bad · Java
CVE IDTitleCVSSSeverityPublished
CVE-2024-52048 Trend Micro Apex One 安全漏洞 — Trend Micro Apex One 7.8 High2024-12-31
CVE-2024-56043 WordPress WPLMS plugin <= 1.9.9 - Unauthenticated Privilege Escalation vulnerability — WPLMS 9.8 Critical2024-12-31
CVE-2024-56040 WordPress VibeBP plugin <= 1.9.9.4.1 - Unauthenticated Privilege Escalation vulnerability — VibeBP 9.8 Critical2024-12-31
CVE-2024-56071 WordPress Simple Dashboard plugin <= 2.0 - Privilege Escalation vulnerability — Simple Dashboard 9.8 Critical2024-12-31
CVE-2024-56205 WordPress AI Magic – SEO Content Generator & Article Writer plugin <= 1.0.4 - Privilege Escalation vulnerability — AI Magic 9.8 Critical2024-12-31
CVE-2024-56220 WordPress SSL Wireless SMS Notification plugin <= 3.6.0 - Privilege Escalation vulnerability — SSL Wireless SMS Notification 9.8 Critical2024-12-31
CVE-2024-50701 TeamPass 安全漏洞 — TeamPass 4.3 Medium2024-12-30
CVE-2024-50702 TeamPass 安全漏洞 — TeamPass 5.4 Medium2024-12-30
CVE-2024-12678 Nomad Allocations Vulnerable To Privilege Escalation Within A Namespace Using Unredacted Workload Identity Tokens — Nomad 6.5 Medium2024-12-20
CVE-2024-54383 WordPress WooCommerce - PDF Vouchers plugin < 4.9.9 - Broken Authentication vulnerability — WooCommerce PDF Vouchers 9.8 Critical2024-12-18
CVE-2024-9779 Open-cluster-management-io/ocm: cluster-manager permissions may allow a worker node to obtain service account tokens 7.5 High2024-12-17
CVE-2024-54229 WordPress SV100 Companion plugin <= 2.0.02 - Privilege Escalation vulnerability — SV100 Companion 9.8 Critical2024-12-16
CVE-2024-54363 WordPress Wp NssUser Register plugin <= 1.0.0 - Privilege Escalation vulnerability — Wp NssUser Register 9.8 Critical2024-12-16
CVE-2024-54365 WordPress KH Easy User Settings plugin <= 1.0.0 - Privilege Escalation vulnerability — KH Easy User Settings 8.8 High2024-12-16
CVE-2024-54293 WordPress CE21 Suite plugin <= 2.2.0 - Privilege Escalation vulnerability — CE21 Suite 9.8 Critical2024-12-13
CVE-2023-26280 IBM Jazz Foundation improper access control — Jazz Foundation 5.3 Medium2024-11-25
CVE-2024-9479 upKeeper 安全漏洞 — upKeeper Instant Privilege Access 8.8AIHighAI2024-11-20
CVE-2024-9478 upKeeper 安全漏洞 — upKeeper Instant Privilege Access 8.8AIHighAI2024-11-20
CVE-2024-52442 WordPress UserPlus plugin <= 2.0 - Privilege Escalation vulnerability — UserPlus 9.8 Critical2024-11-20
CVE-2020-25720 Samba: check attribute access rights for ldap adds of computers 7.5 High2024-11-17
CVE-2024-10978 PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID — PostgreSQL 4.2 Medium2024-11-14
CVE-2024-9476 Privilege escalation vulnerability for Organizations in Grafana — Grafana OSS and Enterprise 8.8AIHighAI2024-11-13
CVE-2024-29119 Siemens Spectrum Power 安全漏洞 — Spectrum Power 7 7.8 High2024-11-12
CVE-2024-47595 Local Privilege Escalation in SAP Host Agent — SAP Host Agent 6.3 Medium2024-11-12
CVE-2024-45759 Dell PowerProtect Data Domain 安全漏洞 — PowerProtect DD 6.8 Medium2024-11-08
CVE-2024-50504 WordPress Bulk Change Role plugin <= 1.1 - Privilege Escalation vulnerability — Bulk Change Role 8.8 High2024-10-30
CVE-2024-50506 WordPress Marketing Automation by AZEXO plugin <= 1.27.80 - Privilege Escalation vulnerability — Marketing Automation by AZEXO 8.8 High2024-10-30
CVE-2024-50550 WordPress LiteSpeed Cache plugin <= 6.5.1 - Privilege Escalation vulnerability — LiteSpeed Cache 8.1 High2024-10-29
CVE-2024-50481 WordPress Bstone Demo Importer plugin <= 1.0.1 - Privilege Escalation vulnerability — Bstone Demo Importer 8.8 High2024-10-29
CVE-2024-50485 WordPress Exam Matrix plugin <= 1.5 - Privilege Escalation vulnerability — Exam Matrix 9.8 Critical2024-10-29

Vulnerabilities classified as CWE-266 (特权授予不正确) represent 382 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.