CWE-863: Incorrect Authorization

ClassIncompleteExploit Likelihood: High🏆 #17 in Top 25 (2024)

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

View on MITRE

969Related CVEs

11.97Severity Score

Back to CWE Lookup

Technical Details

Structure: Simple

Applicable To

Languages

Not Language-Specific

Platforms

🏆 CWE Top 25 Historical Ranking

2023:#24

Score: 3.16

892 CVEs

2024:#17↑7

Score: 11.97

969 CVEs

Trend:Worsening (moved down 7 ranks)

Learn More

Find Related CVEs

Search for vulnerabilities that exploit CWE-863

CWE Top 25 Most Dangerous

See how this weakness ranks against others

CVE vs CWE: What's the Difference?

Understanding vulnerabilities vs weaknesses

Understanding CVSS Scoring

How vulnerability severity is measured

View Full MITRE Entry

Complete technical details and references