CWE-271
Overview
- CWE ID
- 271
- CWE Name
- Privilege Dropping / Lowering Errors
- CWE Abstraction
- Class
- CWE structure
- Simple
- CWE Status
- Incomplete
Description
The software does not drop privileges before passing control of a resource to an actor that does not have those privileges.
Extended Description
In some contexts, a system executing with elevated permissions will hand off a process/file/etc. to another process or user. If the privileges of an entity are not reduced, then elevated privileges are spread throughout a system and possibly to an attacke
Related CWEs
| CWE ID | View ID | Nature | Ordinal |
|---|---|---|---|
| 269 | 1000 | ChildOf | Primary |