BaseDraft

CWE-274Improper Handling of Insufficient Privileges

Category: authz

Description

The product does not handle or incorrectly handles when it has insufficient privileges to perform an operation, leading to resultant weaknesses.

Common consequences· 1

  • Other — Other, Alter Execution Logic

References

  1. https://cwe.mitre.org/data/definitions/274.html

(incoming)3

TypeTargetConfidenceTier
VulnerabilityCVE-2025-20156cve-2025-201560%live
VulnerabilityCVE-2025-29365cve-2025-293650%live
KEVEntryMicrosoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerabilitykev-cve-2022-410490%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Handling of Insufficient Permissions or Privileges
CWE
Execution with Unnecessary Privileges
CWE
Improper Check for Dropped Privileges
CWE
Incorrect Use of Privileged APIs
CWE
Improper Privilege Management
CWE
Improper Access Control
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.