CWE-286—Incorrect User Management
PUBLISHEDweakness record
released 2006-07-19 · last modified 2025-12-11
Metadata
名称
Incorrect User Management
描述
The product does not properly manage a user within its environment.
Users can be assigned to the wrong group (class) of permissions resulting in unintended access rights to sensitive objects.