CWEBaseIncomplete4 recent CVEs

CWE-273Improper Check for Dropped Privileges

Description

The product attempts to drop privileges but does not check or incorrectly checks to see if the drop succeeded.

If the drop fails, the product will continue to run with the raised privileges, which might provide additional access to unprivileged users.

Common consequences

Potential mitigations

Related CWEs

Recent CVEs classified under this CWE