Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-273 (对于放弃特权的检查不恰当) — Vulnerability Class 12

12 vulnerabilities classified as CWE-273 (对于放弃特权的检查不恰当). AI Chinese analysis included.

CWE-273 represents a critical logic flaw where software attempts to relinquish elevated privileges but fails to verify the success of this operation. This weakness typically arises when developers assume privilege drops are atomic or always succeed without validating the return status. Attackers exploit this by triggering the privilege drop sequence, knowing the system will likely retain root or administrator access if the command fails silently or returns an unexpected error code. Consequently, the application continues running with excessive permissions, allowing unprivileged users to execute arbitrary code or access sensitive resources. To prevent this, developers must rigorously check the return values of all privilege-changing system calls. Implementing strict error handling that terminates the process or logs a fatal alert upon failure ensures the application never operates with unintended elevated rights, thereby maintaining the principle of least privilege.

MITRE CWE Description
The product attempts to drop privileges but does not check or incorrectly checks to see if the drop succeeded. If the drop fails, the product will continue to run with the raised privileges, which might provide additional access to unprivileged users.
Common Consequences (2)
Access ControlGain Privileges or Assume Identity
If privileges are not dropped, neither are access rights of the user. Often these rights can be prevented from being dropped.
Access Control, Non-RepudiationGain Privileges or Assume Identity, Hide Activities
If privileges are not dropped, in some cases the system may record actions as the user which is being impersonated rather than the impersonator.
Mitigations (3)
Architecture and DesignCompartmentalize the system to have "safe" areas where trust boundaries can be unambiguously drawn. Do not allow sensitive data to go outside of the trust boundary and always be careful when interfacing with a compartment outside of the safe area. Ensure that appropriate compartmentalization is built into the system design, and the compartmentalization allows for and reinforces privilege separatio…
ImplementationCheck the results of all functions that return a value and verify that the value is expected.
Effectiveness: High
ImplementationIn Windows, make sure that the process token has the SeImpersonatePrivilege(Microsoft Server 2003). Code that relies on impersonation for security must ensure that the impersonation succeeded, i.e., that a proper privilege demotion happened.
Examples (1)
This code attempts to take on the privileges of a user before creating a file, thus avoiding performing the action with unnecessarily high privileges:
bool DoSecureStuff(HANDLE hPipe) { bool fDataWritten = false; ImpersonateNamedPipeClient(hPipe); HANDLE hFile = CreateFile(...); /../ RevertToSelf() /../ }
Bad · C++
CVE IDTitleCVSSSeverityPublished
CVE-2026-32107 xrdp: Fail-open privilege drop in sesexec — child processes may execute as root if setuid fails — xrdp 8.8 High2026-04-17
CVE-2026-21882 theshit's Improper Privilege Dropping Allows Local Privilege Escalation via Command Re-execution — theshit 8.4 High2026-03-02
CVE-2025-62175 Mastodon streaming API fails to disconnect disabled and suspended users — mastodon 4.3 Medium2025-10-13
CVE-2025-27396 Siemens SCALANCE LPE9403 安全漏洞 — SCALANCE LPE9403 8.8 High2025-03-11
CVE-2025-1003 HP Anyware Agent for Linux – Potential Authentication Bypass — HP Anyware Linux Agent 8.8 -2025-02-03
CVE-2023-0657 Keycloak: impersonation via logout token exchange 3.4 Low2024-11-17
CVE-2024-38813 Privilege escalation vulnerability — VMware vCenter Server 7.5 High2024-09-17
CVE-2023-5369 copy_file_range insufficient capability rights check — FreeBSD 9.6 -2023-10-04
CVE-2022-0358 QEMU 安全漏洞 — QEMU/virtiofsd 7.8 -2022-08-29
CVE-2021-37839 Improper access to dataset metadata information — Apache Superset 4.3 -2022-07-06
CVE-2021-3982 gnome-shell 安全漏洞 — gnome-shell 5.5 -2022-04-29
CVE-2021-36372 Original block tokens are persisted and can be retrieved — Apache Ozone 9.8 -2021-11-19

Vulnerabilities classified as CWE-273 (对于放弃特权的检查不恰当) represent 12 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.