Back to CWE Lookup

CWE-863: Incorrect Authorization

ClassIncompleteExploit Likelihood: High
🏆 #17 in CWE Top 25 20247
View on MITRE

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

Technical Details

Structure
Simple

Applicable To

Languages
Not Language-Specific
Platforms

🏆 CWE Top 25 Historical Ranking

2023:#24
Score: 3.16
892 CVEs
2024:#17↑7
Score: 11.97
969 CVEs
Trend:Worsening (moved down 7 ranks)

Additional Resources

CWE-863: Incorrect Authorization | #17 in CWE Top 25 2024 | CWE Lookup | Inventive HQ