CWE-269: Improper Privilege Management

ClassDraftExploit Likelihood: Medium🏆 #22 in Top 25 (2024)

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

View on MITRE
636Related CVEs
8.92Severity Score
Back to CWE Lookup

Technical Details

Structure
Simple

Applicable To

Languages
Not Language-Specific
Platforms

🏆 CWE Top 25 Historical Ranking

2023:#22
Score: 3.31
598 CVEs
2024:#22=
Score: 8.92
636 CVEs
Trend:Stable (no rank change)

Learn More

Find Related CVEs

Search for vulnerabilities that exploit CWE-269

CWE Top 25 Most Dangerous

See how this weakness ranks against others

CVE vs CWE: What's the Difference?

Understanding vulnerabilities vs weaknesses

Understanding CVSS Scoring

How vulnerability severity is measured

View Full MITRE Entry

Complete technical details and references