Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 1016

1016 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CWE-269 represents a critical access control weakness where software fails to properly assign, modify, track, or verify privileges for users or processes. This flaw allows actors to operate outside their intended security boundaries, effectively granting them an unintended sphere of control. Attackers typically exploit this vulnerability by manipulating session tokens, bypassing authentication checks, or leveraging insufficient authorization logic to escalate privileges from a standard user to an administrator. Such exploitation can lead to unauthorized data access, system modification, or complete compromise. To prevent this, developers must implement robust identity and access management frameworks that enforce strict least-privilege principles. Regularly auditing permission assignments, utilizing role-based access control, and rigorously validating user rights at every critical application checkpoint are essential strategies to ensure actors only possess the minimum necessary privileges for their specific tasks.

MITRE CWE Description
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Common Consequences (1)
Access ControlGain Privileges or Assume Identity
Mitigations (3)
Architecture and Design, OperationVery carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
Architecture and DesignFollow the principle of least privilege when assigning access rights to entities in a software system.
Architecture and DesignConsider following the principle of separation of privilege. Require multiple conditions to be met before permitting access to a system resource.
Examples (2)
This code temporarily raises the program's privileges to allow creation of a new user folder.
def makeNewUserDir(username): if invalidUsername(username): #avoid CWE-22 and CWE-78 print('Usernames cannot contain invalid characters') return False try: raisePrivileges() os.mkdir('/home/' + username) lowerPrivileges() except OSError: print('Unable to create new user directory for user:' + username) return False return True
Bad · Python
The following example demonstrates the weakness.
seteuid(0); /* do some stuff */ seteuid(getuid());
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2026-1994 s2Member <= 260127 - Unauthenticated Privilege Escalation via Account Takeover — s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions 9.8 Critical2026-02-19
CVE-2025-13851 Buyent Theme (with Buyent Classified Plugin) <= 1.0.7 - Unauthenticated Privilege Escalation via User Registration — Buyent 9.8 Critical2026-02-19
CVE-2025-13563 Lizza LMS Pro <= 1.0.3 - Unauthenticated Privilege Escalation — Lizza LMS Pro 9.8 Critical2026-02-19
CVE-2026-0912 Toret Manager <= 1.2.7 - Authenticated (Subscriber+) Arbitrary Options Update via AJAX actions — Toret Manager 8.8 High2026-02-19
CVE-2025-12882 Clasifico Listing <= 2.0 - Unauthenticated Privilege Escalation — Clasifico Listing 9.8 Critical2026-02-19
CVE-2026-2563 JingDong JD Cloud Box AX6600 jdcapp_rpc controlDevice get_status privileges management — JD Cloud Box AX6600 6.3 Medium2026-02-16
CVE-2026-2562 JingDong JD Cloud Box AX6600 jdcweb_rpc jdcapi cast_streen privileges management — JD Cloud Box AX6600 6.3 Medium2026-02-16
CVE-2026-2561 JingDong JD Cloud Box AX6600 jdcweb_rpc jdcapi web_get_ddns_uptime privileges management — JD Cloud Box AX6600 6.3 Medium2026-02-16
CVE-2026-26369 JUNG eNet SMART HOME server 2.2.1/2.3.1 Privilege Escalation via setUserGroup — eNet SMART HOME server 9.8 Critical2026-02-15
CVE-2026-1750 Ecwid by Lightspeed Ecommerce Shopping Cart <= 7.0.7 - Authenticated (Subscriber+) Privilege Escalation via ec_store_admin_access — Ecwid by Lightspeed Ecommerce Shopping Cart 8.8 High2026-02-15
CVE-2025-8572 Truelysell Core <= 1.8.7 - Unauthenticated Privilege Escalation via Registration — Truelysell Core 9.8 Critical2026-02-14
CVE-2026-2144 Magic Login Mail or QR Code <= 2.05 - Unauthenticated Privilege Escalation via Insecure QR Code File Storage — Magic Login Mail or QR Code 8.1 High2026-02-14
CVE-2026-24894 FrankenPHP leaks session data between requests in worker mode — frankenphp 5.9AIMediumAI2026-02-12
CVE-2026-26010 Leaky JWTs in OpenMetadata exposing highly-privileged bot users — OpenMetadata 8.1AIHighAI2026-02-11
CVE-2025-64487 Outline is vulnerable to privilege escalation vulnerability in document sharing — outline 7.6 High2026-02-11
CVE-2026-21533 Windows Remote Desktop Services Elevation of Privilege Vulnerability — Windows 10 Version 1607 7.8 High2026-02-10
CVE-2025-15100 JAY Login & Register <= 2.6.03 - Authenticated (Subscriber+) Privilege Escalation via jay_panel_ajax_update_profile — JAY Login & Register 8.8 High2026-02-08
CVE-2025-15027 JAY Login & Register <= 2.6.03 - Unauthenticated Privilege Escalation via jay_login_register_ajax_create_final_user — JAY Login & Register 9.8 Critical2026-02-08
CVE-2025-6723 Untrusted user data can lead to privilege escalation — Chef Inspec 7.8AIHighAI2026-01-30
CVE-2025-13176 Local privilege escalation in ESET Inspect Connector for Windows — ESET Inspect Connector 7.8AIHighAI2026-01-30
CVE-2026-23896 immich API Key Privilege Escalation vulnerability — immich 7.2 High2026-01-29
CVE-2025-13918 Elevation of Privileges in Symantec Endpoint Protection Windows Client — Symantec Endpoint Protection Windows Client 6.7 Medium2026-01-28
CVE-2025-13917 Elevation of Privileges in Web Security Services (WSS) Agent — Symantec Web Security Services Agent 7.0 High2026-01-28
CVE-2026-22039 Kyverno Cross-Namespace Privilege Escalation via Policy apiCall — kyverno 10.0 Critical2026-01-27
CVE-2025-59094 Local Privilege Escalation in dormakaba Kaba exos 9300 System management — Kaba exos 9300 7.8AIHighAI2026-01-26
CVE-2026-0920 LA-Studio Element Kit for Elementor <= 1.5.6.3 - Unauthenticated Privilege Escalation via Backdoor to Administrative User Creation via lakit_bkrole parameter — LA-Studio Element Kit for Elementor 9.8 Critical2026-01-22
CVE-2026-23990 Flux Operator Web UI Impersonation Bypass via Empty OIDC Claims — flux-operator 5.3 Medium2026-01-21
CVE-2025-14533 Advanced Custom Fields: Extended <= 0.9.2.1 - Unauthenticated Privilege Escalation via Insert User Form Action — Advanced Custom Fields: Extended 9.8 Critical2026-01-20
CVE-2025-15403 RegistrationMagic <= 6.0.7.1 - Unauthenticated Privilege Escalation via admin_order — RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login 9.8 Critical2026-01-17
CVE-2026-21223 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability — Microsoft Edge (Chromium-based) 7.1 High2026-01-16

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 1016 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.