CWE•Class•Incomplete•1 recent CVE
CWE-286Incorrect User Management
Description
The product does not properly manage a user within its environment.
Users can be assigned to the wrong group (class) of permissions resulting in unintended access rights to sensitive objects.
Common consequences
- Other→Varies by Context