Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 1004

1004 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CWE-269 represents a critical access control weakness where software fails to properly assign, modify, track, or verify privileges for users or processes. This flaw allows actors to operate outside their intended security boundaries, effectively granting them an unintended sphere of control. Attackers typically exploit this vulnerability by manipulating session tokens, bypassing authentication checks, or leveraging insufficient authorization logic to escalate privileges from a standard user to an administrator. Such exploitation can lead to unauthorized data access, system modification, or complete compromise. To prevent this, developers must implement robust identity and access management frameworks that enforce strict least-privilege principles. Regularly auditing permission assignments, utilizing role-based access control, and rigorously validating user rights at every critical application checkpoint are essential strategies to ensure actors only possess the minimum necessary privileges for their specific tasks.

MITRE CWE Description
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Common Consequences (1)
Access ControlGain Privileges or Assume Identity
Mitigations (3)
Architecture and Design, OperationVery carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
Architecture and DesignFollow the principle of least privilege when assigning access rights to entities in a software system.
Architecture and DesignConsider following the principle of separation of privilege. Require multiple conditions to be met before permitting access to a system resource.
Examples (2)
This code temporarily raises the program's privileges to allow creation of a new user folder.
def makeNewUserDir(username): if invalidUsername(username): #avoid CWE-22 and CWE-78 print('Usernames cannot contain invalid characters') return False try: raisePrivileges() os.mkdir('/home/' + username) lowerPrivileges() except OSError: print('Unable to create new user directory for user:' + username) return False return True
Bad · Python
The following example demonstrates the weakness.
seteuid(0); /* do some stuff */ seteuid(getuid());
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2026-39961 Aiven Operator has cross-namespace secret exfiltration via ClickhouseUser connInfoSecretSource — aiven-operator 6.8 Medium2026-04-09
CVE-2026-35607 File Browser: Proxy auth auto-provisioned users inherit Execute permission and Commands — filebrowser 8.1 High2026-04-07
CVE-2026-5373 runZero Platform superuser privilege escalation — Platform 8.1 High2026-04-07
CVE-2026-33727 Pi-hole has a Local Privilege Escalation (post-compromise, pihole -> root). — pi-hole 6.4 Medium2026-04-06
CVE-2023-7343 Belden Industrial HiVision Arbitrary Code Execution via Malicious Project File — Hirschmann Industrial HiVision 7.8 High2026-04-02
CVE-2023-7342 Belden HiSecOS Web Server Privilege Escalation — Hirschmann HiSecOS EAGLE 8.8 High2026-04-02
CVE-2026-34528 File Browser's Signup Grants Execution Permissions When Default Permissions Includes Execution — filebrowser 8.1 High2026-04-01
CVE-2026-34397 himmelblau: NSS fake-primary group lookup reintroduces name collision risk — himmelblau 6.3 Medium2026-04-01
CVE-2026-33074 Discourse: Vulnerability in discourse-subscriptions plugin allowing users to self-grant to higher tier subscriptions — discourse 7.1 -2026-03-31
CVE-2026-34218 ClearanceKit: Managed and user-defined policy rules not enforced between opfilter start and first policy modification — clearancekit 7.7AIHighAI2026-03-31
CVE-2026-33906 Ella Core has Privilege Escalation via Database Restore by NetworkManager role — core 7.2 High2026-03-27
CVE-2026-2931 Amelia Booking <= 9.1.2 - Authenticated (Customer+) Insecure Direct Object Reference to Arbitrary User Password Change — Booking for Appointments and Events Calendar – Amelia 8.8 High2026-03-26
CVE-2026-30892 Crun incorrectly parses `crun exec` option `-u`, leading to privilege escalation — crun--2026-03-25
CVE-2026-4824 Enter Software Iperius Backup Backup Job Configuration File privileges management — Iperius Backup 7.0 High2026-03-25
CVE-2026-33509 pyload-ng: SETTINGS Permission Users Can Achieve Remote Code Execution via Unrestricted Reconnect Script Configuration — pyload 7.5 High2026-03-24
CVE-2026-29111 systemd: Local unprivileged user can trigger an assert — systemd 5.5 Medium2026-03-23
CVE-2026-4314 The Ultimate WordPress Toolkit – WP Extended <= 3.2.4 - Authenticated (Subscriber+) Privilege Escalation via Menu Editor Module — The Ultimate WordPress Toolkit – WP Extended 8.8 High2026-03-22
CVE-2026-3629 Import and export users and customers <= 1.29.7 - Privilege Escalation to Administrator via save_extra_user_profile_fields — Import and export users and customers 8.1 High2026-03-21
CVE-2026-2375 App Builder – Create Native Android & iOS Apps On The Flight <= 5.5.10 - Unauthenticated Privilege Escalation via 'role' Parameter — App Builder – Create Native Android & iOS Apps On The Flight 6.5 Medium2026-03-21
CVE-2026-30888 Discourse has moderator privilege escalation via arbitrary post_id in suspend/silence endpoint — discourse 2.2 Low2026-03-20
CVE-2026-32760 File Browser Self Registration Grants Any User Admin Access When Default Permissions Include Admin — filebrowser 9.8 -2026-03-19
CVE-2026-2640 Lenovo PC Manager 安全漏洞 — PC Manager 5.5 Medium2026-03-11
CVE-2026-32106 StudioCMS: REST API Missing Rank Check Allows Admin to Create Peer Admin Accounts — studiocms 4.7 Medium2026-03-11
CVE-2026-24510 Dell Alienware Command Center 安全漏洞 — Alienware Command Center (AWCC) 6.7 Medium2026-03-11
CVE-2026-31852 Jellyfin Possible Organization/Secret Compromise from dangerous CI implementation — code-quality.yml 10.0 Critical2026-03-11
CVE-2026-30902 Zoom Clients for Windows - Improper Privilege Management — Zoom Workplace 7.8 High2026-03-11
CVE-2026-1993 ExactMetrics 7.1.0 - 9.0.2 - Authenticated (Custom) Improper Privilege Management to Role Privilege Escalation via Settings Update — ExactMetrics – Google Analytics Dashboard for WordPress (Website Stats Plugin) 8.8 High2026-03-11
CVE-2026-31834 Umbraco Affected by Vertical Privilege Escalation via Missing Authorization Checks — Umbraco-CMS 7.2 High2026-03-10
CVE-2025-15576 Jail chroot escape via fd exchange with a different jail — FreeBSD 5.5AIMediumAI2026-03-09
CVE-2025-15547 Jail escape by a privileged user via nullfs — FreeBSD 6.7AIMediumAI2026-03-09

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 1004 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.