Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 1052

1052 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CWE-269 represents a critical access control weakness where software fails to properly assign, modify, track, or verify privileges for users or processes. This flaw allows actors to operate outside their intended security boundaries, effectively granting them an unintended sphere of control. Attackers typically exploit this vulnerability by manipulating session tokens, bypassing authentication checks, or leveraging insufficient authorization logic to escalate privileges from a standard user to an administrator. Such exploitation can lead to unauthorized data access, system modification, or complete compromise. To prevent this, developers must implement robust identity and access management frameworks that enforce strict least-privilege principles. Regularly auditing permission assignments, utilizing role-based access control, and rigorously validating user rights at every critical application checkpoint are essential strategies to ensure actors only possess the minimum necessary privileges for their specific tasks.

MITRE CWE Description
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Common Consequences (1)
Access ControlGain Privileges or Assume Identity
Mitigations (3)
Architecture and Design, OperationVery carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
Architecture and DesignFollow the principle of least privilege when assigning access rights to entities in a software system.
Architecture and DesignConsider following the principle of separation of privilege. Require multiple conditions to be met before permitting access to a system resource.
Examples (2)
This code temporarily raises the program's privileges to allow creation of a new user folder.
def makeNewUserDir(username): if invalidUsername(username): #avoid CWE-22 and CWE-78 print('Usernames cannot contain invalid characters') return False try: raisePrivileges() os.mkdir('/home/' + username) lowerPrivileges() except OSError: print('Unable to create new user directory for user:' + username) return False return True
Bad · Python
The following example demonstrates the weakness.
seteuid(0); /* do some stuff */ seteuid(getuid());
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2026-45176 Idira Endpoint Privilege Manager Agent: Local Privilege Escalation via Internal Communication or File Operation Manipulation — Idira Endpoint Privilege Manager--2026-06-11
CVE-2026-50570 Fission: Incomplete capability denylist in Environment/Function PodSpec validation allows tenant-added CAP_SYS_TIME and cross-tenant node wall-clock corruption — fission 8.5 High2026-06-10
CVE-2026-50564 Fission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escape — fission 9.9 Critical2026-06-10
CVE-2026-50563 Fission Container Executor Function PodSpec Injection Leading to Node Escape — fission 9.9 Critical2026-06-10
CVE-2026-50545 Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover — fission 9.9 Critical2026-06-10
CVE-2025-6254 Doctreat Core <= 1.6.8 - Unauthenticated Privilege Escalation — Doctreat Core 9.8 Critical2026-06-10
CVE-2026-11616 Events Calendar for GeoDirectory <= 2.3.28 - Authenticated (Subscriber+) Privilege Escalation — Events Calendar for GeoDirectory 8.8 High2026-06-09
CVE-2026-44119 Apache HTTP Server: escalation of privilege through expressions in .htaccess in multiple modules — Apache HTTP Server--2026-06-08
CVE-2025-5088 Arista CloudVision Exchange (CVX) Cluster Privilege Escalation via MCS Redis Session — EOS / CloudVision eXchange (CVX) 8.3 High2026-06-05
CVE-2026-10868 MISP user edit endpoint mass assignment vulnerability allows unauthorized user account modification — misp--2026-06-04
CVE-2026-49189 Broadcast Receiver Privilege Escalation — Connect M6E 5G Portable WiFi Router--2026-06-04
CVE-2026-8206 Kirki 6.0.0 - 6.0.6 - Unauthenticated Privilege Escalation via 'handle_forgot_password' — Kirki – Freeform Page Builder, Website Builder & Customizer 9.8 Critical2026-06-02
CVE-2026-10217 nextlevelbuilder GoClaw RoleAdmin Gateway tts_config.go handleSave privileges management — GoClaw 6.3 Medium2026-06-01
CVE-2026-7465 Spectra Gutenberg Blocks <= 2.19.25 - Authenticated (Contributor+) Remote Code Execution via Arbitrary PHP Function Call via Block Attributes — Spectra Gutenberg Blocks – Website Builder for the Block Editor 8.8 High2026-05-30
CVE-2026-47744 Shopper: Authorization bypass and RBAC privilege escalation in team settings — shopper 9.9 Critical2026-05-29
CVE-2026-45043 RustFS: ImportIam Allows Creation of Backdoor Service Accounts Under Any Parent Including Root — rustfs--2026-05-29
CVE-2026-8809 Advanced Custom Fields: Extended <= 0.9.2.5 - Unauthenticated Privilege Escalation via Validation Bypass to '_acf_post_id' Parameter — Advanced Custom Fields: Extended 9.8 Critical2026-05-28
CVE-2026-44543 Local Path Provisioner: HelperPod Template Injection — local-path-provisioner 8.7 High2026-05-28
CVE-2026-8980 Privilege Escalation — Amtron--2026-05-28
CVE-2026-6226 Frontend Admin by DynamiApps <= 3.29.2 - Unauthenticated Privilege Escalation via Form Configuration Injection — Frontend Admin by DynamiApps 8.8 High2026-05-28
CVE-2026-45716 Budibase: Builder-to-Admin Privilege Escalation via onboardUsers Endpoint Without SMTP Configuration — budibase 8.8 High2026-05-27
CVE-2026-46424 Budibase: Missing Cache Invalidation on Public API Role Unassignment Allows Revoked Users to Retain Privileges for Up to 1 Hour — budibase 4.2 Medium2026-05-27
CVE-2026-8787 Firebase Support & Chat Management <= 3.1.1 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation — Firebase Support & Chat Management 8.8 High2026-05-27
CVE-2026-9490 Acer Care Center creates a Named Pipe with a weak Security Descriptor — Care Center--2026-05-25
CVE-2026-6419 Wishlist Member <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) API Secret Key Disclosure and Privilege Escalation via 'wlm3_get_screen' AJAX action — Wishlist Member 8.8 High2026-05-23
CVE-2026-6897 Wishlist Member <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Options Update via 'wishlistmember_team_accounts_save_settings' AJAX action — Wishlist Member 8.8 High2026-05-23
CVE-2026-6895 Wishlist Member <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) API Secret Key Disclosure and Privilege Escalation via 'wlm3_export_settings' AJAX Action — Wishlist Member 8.8 High2026-05-23
CVE-2026-6898 WishList Member <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) Generate API Secret Key via 'wlm3_generate_api_key' AJAX action — Wishlist Member 8.8 High2026-05-23
CVE-2026-23663 Microsoft Global Secure Access (GSA) Information Disclosure Vulnerability — Microsoft Global Secure Access (GSA) 7.5 High2026-05-22
CVE-2026-40172 authentik: Privilege Escalation via User PATCH: Superuser Group Assignment Bypasses enable_group_superuser — authentik 8.1 High2026-05-22

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 1052 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.