Horizontal Privilege Escalation
GPTKB entity
Statements (18)
Predicate | Object |
---|---|
gptkbp:instanceOf |
cybersecurity concept
|
gptkbp:category |
information security
|
gptkbp:defines |
A type of privilege escalation where an attacker gains access to resources or functions of another user with the same access level.
|
gptkbp:example |
User A accessing User B's data without authorization
|
https://www.w3.org/2000/01/rdf-schema#label |
Horizontal Privilege Escalation
|
gptkbp:occurredIn |
gptkb:personal_computer
web applications |
gptkbp:prevention |
input validation
session management proper access controls |
gptkbp:relatedTo |
privilege escalation
vertical privilege escalation |
gptkbp:riskFactor |
data breach
unauthorized actions loss of confidentiality |
gptkbp:bfsParent |
gptkb:Privilege_Escalation
gptkb:Broken_Access_Control |
gptkbp:bfsLayer |
6
|