Back to CWE Lookup

CWE-269: Improper Privilege Management

ClassDraftExploit Likelihood: Medium
🏆 #22 in CWE Top 25 2024
View on MITRE

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Technical Details

Structure
Simple

Applicable To

Languages
Not Language-Specific
Platforms

🏆 CWE Top 25 Historical Ranking

2023:#22
Score: 3.31
598 CVEs
2024:#22=
Score: 8.92
636 CVEs
Trend:Stable (no rank change)

Additional Resources

CWE-269: Improper Privilege Management | #22 in CWE Top 25 2024 | CWE Lookup | Inventive HQ