logo

CWE-279 - Incorrect Execution-Assigned Permissions

  • Abstraction:Variant
  • Structure:Simple
  • Status:Draft
  • Release Date:2006-07-19
  • Latest Modification Date:2023-06-29

Weakness Name

Incorrect Execution-Assigned Permissions

Description

While it is executing, the product sets the permissions of an object in a way that violates the intended permissions that have been specified by the user.

Common Consequences

Scope: Confidentiality, Integrity

Impact: Read Application Data, Modify Application Data

Related Weaknesses

CWE-732Incorrect Permission Assignment for Critical ResourceHigh