BaseIncomplete
CWE-267Privilege Defined With Unsafe Actions
Category: authz
Description
A particular privilege, role, capability, or right can be used to perform unsafe actions that were not intended, even when it is assigned to the correct entity.
Common consequences· 1
- Access Control — Gain Privileges or Assume IdentityA user can access restricted functionality and/or sensitive information that may include administrative functionality and user accounts.
Potential mitigations· 2
- [Architecture and Design, Operation]Very carefully manage the setting, management, and handling of privileges. Explicitly manage trust zones in the software.
- [Architecture and Design, Operation]Run your code using the lowest privileges that are required to accomplish the necessary tasks [REF-76]. If possible, create isolated accounts with limited privileges that are only used for a single task. That way, a successful attack will not immediately give the attacker access to the rest of the software or its environment. For example, database applications rarely need to run as the database administrator, especially in day-to-day operations.
Related CAPEC attack patterns· 5
References
Exploits (incoming)5
| Type | Target | Confidence | Tier |
|---|---|---|---|
| AttackPattern | Restful Privilege Elevationcapec-58 | 100% | live |
| AttackPattern | Collect Data from Clipboardcapec-637 | 100% | live |
| AttackPattern | Identify Shared Files/Directories on Systemcapec-643 | 100% | live |
| AttackPattern | Probe Audio and Video Peripheralscapec-634 | 100% | live |
| AttackPattern | Collect Data from Screen Capturecapec-648 | 100% | live |
(incoming)19
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-14349cve-2025-14349 | 0% | live |
| Vulnerability | CVE-2025-23015cve-2025-23015 | 0% | live |
| Vulnerability | CVE-2025-26467cve-2025-26467 | 0% | live |
| Vulnerability | Broadcom VMware Aria Operations and VMware Tools Privilege Defined with Unsafe Actions Vulnerabilitycve-2025-41244 | 0% | live |
| Vulnerability | CVE-2025-53900cve-2025-53900 | 0% | live |
| Vulnerability | CVE-2025-62587cve-2025-62587 | 0% | live |
| Vulnerability | CVE-2025-62588cve-2025-62588 | 0% | live |
| Vulnerability | CVE-2025-62589cve-2025-62589 | 0% | live |
| Vulnerability | CVE-2025-62590cve-2025-62590 | 0% | live |
| Vulnerability | CVE-2025-62641cve-2025-62641 | 0% | live |
| Vulnerability | CVE-2025-7691cve-2025-7691 | 0% | live |
| Vulnerability | CVE-2026-0945cve-2026-0945 | 0% | live |
| Vulnerability | CVE-2026-23526cve-2026-23526 | 0% | live |
| Vulnerability | CVE-2026-2459cve-2026-2459 | 0% | live |
| Vulnerability | CVE-2026-2460cve-2026-2460 | 0% | live |
| Vulnerability | CVE-2026-27314cve-2026-27314 | 0% | live |
| Vulnerability | CVE-2026-29646cve-2026-29646 | 0% | live |
| Vulnerability | CVE-2026-42406cve-2026-42406 | 0% | live |
| KEVEntry | Broadcom VMware Aria Operations and VMware Tools Privilege Defined with Unsafe Actions Vulnerabilitykev-cve-2025-41244 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.