Statements (14)
| Predicate | Object |
|---|---|
| gptkbp:instance_of |
gptkb:CEO
|
| gptkbp:bfsLayer |
6
|
| gptkbp:bfsParent |
gptkb:CWE-23
|
| gptkbp:category |
Access Control
|
| gptkbp:consequences |
Data breach, data loss, unauthorized actions.
|
| gptkbp:difficulty |
gptkb:High
|
| gptkbp:example |
A user can access another user's account without proper permissions.
|
| https://www.w3.org/2000/01/rdf-schema#label |
CWE-862
|
| gptkbp:impact |
Unauthorized access to sensitive data or functionality.
|
| gptkbp:is_described_as |
The software does not properly enforce authorization for a user to perform an action.
|
| gptkbp:is_protected_by |
Implement proper access control checks.
|
| gptkbp:name |
Missing Authorization
|
| gptkbp:related_to |
gptkb:CWE-285
gptkb:CWE-863 |