CWE-1220

Overview

CWE ID
1220

CWE Name
Insufficient Granularity of Access Control

CWE Abstraction
Base

CWE structure
Simple

CWE Status
Incomplete

Description

The product implements access controls via a policy or other feature with the intention to disable or restrict accesses (reads and/or writes) to assets in a system from untrusted agents. However, implemented access controls lack required granularity, whic

Extended Description

Related CWEs

CWE ID	View ID	Nature	Ordinal
284	1000	ChildOf	Primary

Related CVEs

CVE
CVE-2022-4801
CVE-2022-4813
CVE-2023-27591
CVE-2023-0205
CVE-2023-0203
CVE-2022-1025
CVE-2022-36110
CVE-2023-4456
CVE-2023-3227
CVE-2023-6725
CVE-2023-33127
CVE-2023-32259
CVE-2023-44285
CVE-2023-43040
CVE-2023-50713
CVE-2024-2035
CVE-2024-26246
CVE-2024-29200
CVE-2024-5389
CVE-2023-43040
CVE-2023-50713
CVE-2024-2035
CVE-2024-26246
CVE-2024-29200
CVE-2024-5389
CVE-2024-39324
CVE-2024-39323
CVE-2024-42365
CVE-2024-6867
CVE-2024-43604
CVE-2024-52799
CVE-2024-52814