CWE-282Improper Ownership Management

Description

The product assigns the wrong ownership, or does not properly verify the ownership, of an object or resource.

Common consequences

• Access Control→Gain Privileges or Assume Identity

Potential mitigations

• Architecture and Design,Operation
  Very carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.

Related CWEs

Recent CVEs classified under this CWE