CWE-267 - Privilege Defined With Unsafe Actions

Description

A particular privilege, role, capability, or right can be used to perform unsafe actions that were not intended, even when it is assigned to the correct entity.

Latest vulnerabilities for CWE-267

Multiple vulnerabilities in Ivanti Secure Access Client 2024-11-14
Low Yes

Multiple vulnerabilities in Juniper Secure Analytics (JSA) 2024-09-10
High Yes Public exploit

Multiple vulnerabilities in Cisco NX-OS Software 2024-08-29
Low Yes

Denial of service in grub 2019-11-29
Low Yes

References

Description of CWE-267 on Mitre website