Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-842 — Vulnerability Class 8

8 vulnerabilities classified as CWE-842. AI Chinese analysis included.

CWE-842 represents a critical access control weakness where an administrator or system erroneously assigns a user to an inappropriate security group. This misconfiguration typically allows attackers to exploit the resulting privilege escalation by leveraging the unintended group’s elevated permissions to bypass security policies. Consequently, users gain unauthorized access to sensitive resources or perform actions outside their designated scope, often evading detection by standard access-control mechanisms that fail to flag the anomalous membership. To prevent this vulnerability, developers and administrators must implement rigorous validation checks during user provisioning processes. Enforcing the principle of least privilege ensures users receive only necessary access, while regular audits of group memberships help identify and correct erroneous assignments before they can be exploited, thereby maintaining the integrity of the system’s security architecture.

MITRE CWE Description
The product or the administrator places a user into an incorrect group. If the incorrect group has more access or privileges than the intended group, the user might be able to bypass intended security policy to access unexpected resources or perform unexpected actions. The access-control system might not be able to detect malicious usage of this group membership.
Common Consequences (1)
Access ControlGain Privileges or Assume Identity
CVE IDTitleCVSSSeverityPublished
CVE-2026-6970 authd Denial of Service and Local Privilege Escalation — authd 7.8AIHighAI2026-04-27
CVE-2024-9412 Improper Authorization Vulnerability in Rockwell Automation Verve® Asset Manager — Verve® Asset Manager 5.3AIMediumAI2024-10-08
CVE-2023-25575 Secured properties in API Platform Core may be accessible within collections — core 7.7 High2023-02-28
CVE-2022-45097 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.3 Medium2023-02-01
CVE-2022-3650 Red Hat Ceph 安全漏洞 — Ceph 7.8 -2023-01-17
CVE-2022-2990 Buildah 安全漏洞 — buildah 7.1 -2022-09-13
CVE-2022-2989 Podman 安全漏洞 — podman 7.1 -2022-09-13
CVE-2022-31007 Privilege escalation from administrator in eLabFTW — elabftw 4.9 Medium2022-05-31

Vulnerabilities classified as CWE-842 represent 8 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.