CWE•Base•Incomplete•20 recent CVEs
CWE-639Authorization Bypass Through User-Controlled Key
Description
The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.
[object Object]
Common consequences
- Access Control→Bypass Protection MechanismAccess control checks for specific user data or functionality can be bypassed.
- Access Control→Gain Privileges or Assume IdentityHorizontal escalation of privilege is possible (one user can view/modify information of another user).
- Access Control→Gain Privileges or Assume IdentityVertical escalation of privilege is possible if the user-controlled key is actually a flag that indicates administrator status, allowing the attacker to gain administrative access.
Potential mitigations
- Architecture and DesignFor each and every data access, ensure that the user has sufficient privilege to access the record that is being requested.
- Architecture and Design,ImplementationMake sure that the key that is used in the lookup of a specific user's record is not controllable externally by the user or that any tampering can be detected.
- Architecture and DesignUse encryption in order to make it more difficult to guess other legitimate values of the key or associate a digital signature with the key so that the server can verify that there has been no tampering.
Related CWEs
Recent CVEs classified under this CWE
CVE-2026-491417.12026-06-08CVE-2026-464412026-06-08CVE-2026-428632026-06-08CVE-2026-428622026-06-08CVE-2026-428612026-06-08CVE-2026-115005.02026-06-08CVE-2026-114616.32026-06-07CVE-2026-98517.22026-06-06CVE-2026-88395.32026-06-06CVE-2026-86114.32026-06-06CVE-2026-76655.32026-06-06CVE-2026-100384.32026-06-06CVE-2026-463902026-06-05CVE-2026-457509.02026-06-05CVE-2026-457469.02026-06-05CVE-2026-457438.12026-06-05CVE-2026-113692026-06-05CVE-2026-111426.52026-06-04CVE-2026-491925.42026-06-04CVE-2026-105975.32026-06-04