目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

CWE-268 特权链锁 类漏洞列表 20

CWE-268 特权链锁 类弱点 20 条 CVE 漏洞汇总,含 AI 中文分析。

CWE-268 特权链漏洞指攻击者通过组合两个或多个独立权限,执行原本被禁止的危险操作。攻击者通常利用系统对权限叠加逻辑的忽视,将低权限能力串联以突破安全边界。开发者应避免权限隐式叠加,实施最小权限原则,并严格审查权限组合逻辑,确保单一权限无法通过组合产生未授权的越权行为,从而阻断攻击路径。

MITRE CWE 官方描述
CWE:CWE-268 Privilege Chaining 英文:两种不同的特权(privileges)、角色(roles)、能力(capabilities)或权利(rights)以某种方式组合,使得实体能够执行在不进行该组合的情况下不会被允许的不安全操作。
常见影响 (1)
Access ControlGain Privileges or Assume Identity
A user can be given or gain access rights of another user. This can give the user unauthorized access to sensitive information including the access information of another user.
缓解措施 (3)
Architecture and DesignConsider following the principle of separation of privilege. Require multiple conditions to be met before permitting access to a system resource.
Architecture and Design, OperationVery carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
Architecture and Design, OperationRun your code using the lowest privileges that are required to accomplish the necessary tasks [REF-76]. If possible, create isolated accounts with limited privileges that are only used for a single task. That way, a successful attack will not immediately give the attacker access to the rest of the software or its environment. For example, database applications rarely need to run as the database ad…
代码示例 (1)
This code allows someone with the role of "ADMIN" or "OPERATOR" to reset a user's password. The role of "OPERATOR" is intended to have less privileges than an "ADMIN", but still be able to help users with small issues such as forgotten passwords.
public enum Roles { ADMIN,OPERATOR,USER,GUEST } public void resetPassword(User requestingUser, User user, String password ){ if(isAuthenticated(requestingUser)){ switch(requestingUser.role){ case GUEST: System.out.println("You are not authorized to perform this command"); break; case USER: System.out.println("You are not authorized to perform this command"); break; default: setPassword(user,password); break; } } else{ System.out.println("You must be logged in to perform this command"); } }
Bad · Java
CVE ID标题CVSS风险等级Published
CVE-2026-3888 Canonical Ubuntu Linux 安全漏洞 7.8 High2026-03-17
CVE-2025-64701 QualitySoft QND 安全漏洞 — QND Premium/Advance/Standard 7.8AIHighAI2025-12-11
CVE-2025-7973 Rockwell Automation FactoryTalk Viewpoint 安全漏洞 — FactoryTalk® ViewPoint 7.8AIHighAI2025-08-14
CVE-2025-36124 IBM WebSphere Application Server Liberty 安全漏洞 — WebSphere Application Server Liberty 5.9 Medium2025-08-12
CVE-2025-2297 BeyondTrust Privilege Management for Windows 安全漏洞 — Privilege Management for Windows 7.8AIHighAI2025-07-28
CVE-2025-49741 Microsoft Edge 安全漏洞 — Microsoft Edge (Chromium-based) 7.4 High2025-07-01
CVE-2025-20112 Cisco Unified Communications 安全漏洞 — Cisco Emergency Responder 5.1 Medium2025-05-21
CVE-2025-32955 Harden-Runner 安全漏洞 — harden-runner 6.0 Medium2025-04-21
CVE-2025-2903 Google Cloud Platform 安全漏洞 — Delphix 9.8AICriticalAI2025-04-17
CVE-2024-4877 OpenVPN 安全漏洞 — OpenVPN 7.8AIHighAI2025-04-03
CVE-2025-0889 BeyondTrust Endpoint Privilege Management for Windows 安全漏洞 — Privilege Management for Windows 7.0 -2025-02-26
CVE-2024-47045 e-Tax Reception System 安全漏洞 — The installer of e-Tax software(common program) 7.8AIHighAI2024-09-26
CVE-2024-1299 GitLab 安全漏洞 — GitLab 6.5 Medium2024-03-07
CVE-2024-1250 GitLab和Git 安全漏洞 — GitLab 6.5 Medium2024-02-12
CVE-2023-5839 HestiaCP 安全漏洞 — hestiacp/hestiacp 8.8 -2023-10-29
CVE-2023-20194 Cisco Identity Services Engine 安全漏洞 — Cisco Identity Services Engine Software 4.9 Medium2023-09-07
CVE-2023-2250 Open Cluster Management 安全漏洞 — MCE 8.8 -2023-04-24
CVE-2023-0759 Cockpit 安全漏洞 — cockpit-hq/cockpit 8.8 -2023-02-09
CVE-2022-1003 Mattermost 安全漏洞 — Mattermost 3.3 Low2022-03-18
CVE-2019-3844 systemd 权限许可和访问控制问题漏洞 — systemd 7.8 -2019-04-26

CWE-268(特权链锁) 是常见的弱点类别,本平台收录该类弱点关联的 20 条 CVE 漏洞。