CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (2.11)  
ID

CWE CATEGORY: SFP Primary Cluster: Privilege

Category ID: 901
Status: Incomplete
+ Description

Description Summary

This category identifies Software Fault Patterns (SFPs) within the Privilege cluster.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ParentOfWeakness VariantWeakness Variant9J2EE Misconfiguration: Weak Access Permissions for EJB Methods
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness ClassWeakness Class250Execution with Unnecessary Privileges
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base266Incorrect Privilege Assignment
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base267Privilege Defined With Unsafe Actions
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base268Privilege Chaining
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base269Improper Privilege Management
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base270Privilege Context Switching Error
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness ClassWeakness Class271Privilege Dropping / Lowering Errors
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base272Least Privilege Violation
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base274Improper Handling of Insufficient Privileges
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant520.NET Misconfiguration: Use of Impersonation
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base653Insufficient Compartmentalization
Software Fault Pattern (SFP) Clusters (primary)888
MemberOfViewView888Software Fault Pattern (SFP) Clusters
Software Fault Pattern (SFP) Clusters (primary)888
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2012-03-22Internal CWE Team
Modifications
Modification DateModifierOrganizationSource
2014-07-30CWE Content TeamMITREInternal
updated Name
Previous Entry Names
Change DatePrevious Entry Name
2014-07-31SFP Cluster: Privilege

More information is available — Please select a different filter.
Page Last Updated: May 05, 2017