Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 1004

1004 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CWE-269 represents a critical access control weakness where software fails to properly assign, modify, track, or verify privileges for users or processes. This flaw allows actors to operate outside their intended security boundaries, effectively granting them an unintended sphere of control. Attackers typically exploit this vulnerability by manipulating session tokens, bypassing authentication checks, or leveraging insufficient authorization logic to escalate privileges from a standard user to an administrator. Such exploitation can lead to unauthorized data access, system modification, or complete compromise. To prevent this, developers must implement robust identity and access management frameworks that enforce strict least-privilege principles. Regularly auditing permission assignments, utilizing role-based access control, and rigorously validating user rights at every critical application checkpoint are essential strategies to ensure actors only possess the minimum necessary privileges for their specific tasks.

MITRE CWE Description
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Common Consequences (1)
Access ControlGain Privileges or Assume Identity
Mitigations (3)
Architecture and Design, OperationVery carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
Architecture and DesignFollow the principle of least privilege when assigning access rights to entities in a software system.
Architecture and DesignConsider following the principle of separation of privilege. Require multiple conditions to be met before permitting access to a system resource.
Examples (2)
This code temporarily raises the program's privileges to allow creation of a new user folder.
def makeNewUserDir(username): if invalidUsername(username): #avoid CWE-22 and CWE-78 print('Usernames cannot contain invalid characters') return False try: raisePrivileges() os.mkdir('/home/' + username) lowerPrivileges() except OSError: print('Unable to create new user directory for user:' + username) return False return True
Bad · Python
The following example demonstrates the weakness.
seteuid(0); /* do some stuff */ seteuid(getuid());
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2025-8899 Paid Videochat Turnkey Site – HTML5 PPV Live Webcams <= 7.3.20 - Authenticated (Author+) Privilege Escalation — Paid Videochat Turnkey Site – HTML5 PPV Live Webcams 8.8 High2026-03-07
CVE-2026-28548 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.1 High2026-03-05
CVE-2026-29127 Incorrect Permission Assignment(777) on `monitor` Users Home Directory Containing SUID Root Binaries in IDC SFX2100 — SFX2100 Satellite Receiver 7.8 -2026-03-05
CVE-2026-29124 Multiple SUID Root Binaries in `monitor` User Home Directory Leading to Potential Local Privilege Escalation — SFX2100 Satellite Receiver 7.8 -2026-03-05
CVE-2026-29123 Multiple SUID Root Binaries in `xd` User Home Directory Leading to Potential Local Privilege Escalation — SFX2100 Satellite Receiver 7.8 -2026-03-05
CVE-2026-29122 `/bin/date` Binary given SETUID Permissions on IDC SFX2100 Leading to Potential LPE — SFX2100 Satellite Receiver 7.1 -2026-03-05
CVE-2026-29121 `/sbin/ip` Binary given SETUID Permissions on IDC SFX2100 Leading to Potential LPE — SFX2100 Satellite Receiver 7.8 -2026-03-05
CVE-2026-27803 Vaultwarden: Collection Management Operations Allowed Without `manage` Verification for Manager Role — vaultwarden 8.3 High2026-03-04
CVE-2026-27802 Vaultwarden: Privilege Escalation via Bulk Permission Update to Unauthorized Collections by Manager — vaultwarden 8.3 High2026-03-04
CVE-2026-20044 Cisco Secure Firewall Management Center Command Injection Vulnerability — Cisco Secure Firewall Management Center (FMC) 6.0 Medium2026-03-04
CVE-2026-1492 User Registration & Membership <= 5.1.2 - Unauthenticated Privilege Escalation via Membership Registration — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder 9.8 Critical2026-03-03
CVE-2026-1566 LatePoint <= 5.2.7 - Authenticated (Agent+) Privilege Escalation — LatePoint – Calendar Booking Plugin for Appointments and Events 8.8 High2026-03-02
CVE-2025-12981 Listee <= 1.1.6 - Unauthenticated Privilege Escalation — Listee 9.8 Critical2026-02-27
CVE-2026-27899 WireGuard Portal Vulnerable to Privilege Escalation to Admin via User Self-Update — wg-portal 8.8 High2026-02-26
CVE-2026-22721 VMware Aria Operations privilege escalation vulnerability — VMware Aria Operations 6.2 Medium2026-02-25
CVE-2025-40538 SolarWinds Serv-U Broken Access Control Remote Code Execution Vulnerability — Serv-U 9.1 Critical2026-02-24
CVE-2026-27198 Formwork Improperly Manages Privileges During User Creation — formwork 8.8 High2026-02-21
CVE-2025-15561 Local Privilege Escalation in NesterSoft WorkTime — WorkTime (on-prem/cloud) 7.8AIHighAI2026-02-19
CVE-2026-1994 s2Member <= 260127 - Unauthenticated Privilege Escalation via Account Takeover — s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions 9.8 Critical2026-02-19
CVE-2025-13851 Buyent Theme (with Buyent Classified Plugin) <= 1.0.7 - Unauthenticated Privilege Escalation via User Registration — Buyent 9.8 Critical2026-02-19
CVE-2025-13563 Lizza LMS Pro <= 1.0.3 - Unauthenticated Privilege Escalation — Lizza LMS Pro 9.8 Critical2026-02-19
CVE-2026-0912 Toret Manager <= 1.2.7 - Authenticated (Subscriber+) Arbitrary Options Update via AJAX actions — Toret Manager 8.8 High2026-02-19
CVE-2025-12882 Clasifico Listing <= 2.0 - Unauthenticated Privilege Escalation — Clasifico Listing 9.8 Critical2026-02-19
CVE-2026-2563 JingDong JD Cloud Box AX6600 jdcapp_rpc controlDevice get_status privileges management — JD Cloud Box AX6600 6.3 Medium2026-02-16
CVE-2026-2562 JingDong JD Cloud Box AX6600 jdcweb_rpc jdcapi cast_streen privileges management — JD Cloud Box AX6600 6.3 Medium2026-02-16
CVE-2026-2561 JingDong JD Cloud Box AX6600 jdcweb_rpc jdcapi web_get_ddns_uptime privileges management — JD Cloud Box AX6600 6.3 Medium2026-02-16
CVE-2026-26369 JUNG eNet SMART HOME server 2.2.1/2.3.1 Privilege Escalation via setUserGroup — eNet SMART HOME server 9.8 Critical2026-02-15
CVE-2026-1750 Ecwid by Lightspeed Ecommerce Shopping Cart <= 7.0.7 - Authenticated (Subscriber+) Privilege Escalation via ec_store_admin_access — Ecwid by Lightspeed Ecommerce Shopping Cart 8.8 High2026-02-15
CVE-2025-8572 Truelysell Core <= 1.8.7 - Unauthenticated Privilege Escalation via Registration — Truelysell Core 9.8 Critical2026-02-14
CVE-2026-2144 Magic Login Mail or QR Code <= 2.05 - Unauthenticated Privilege Escalation via Insecure QR Code File Storage — Magic Login Mail or QR Code 8.1 High2026-02-14

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 1004 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.