CWE-285
Overview
- CWE ID
- 285
- CWE Name
- Improper Authorization
- CWE Abstraction
- Class
- CWE structure
- Simple
- CWE Status
- Draft
Description
The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.