Horizontal Privilege Escalation
GPTKB entity
Statements (18)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
cybersecurity concept
|
| gptkbp:category |
information security
|
| gptkbp:defines |
A type of privilege escalation where an attacker gains access to resources or functions of another user with the same access level.
|
| gptkbp:example |
User A accessing User B's data without authorization
|
| https://www.w3.org/2000/01/rdf-schema#label |
Horizontal Privilege Escalation
|
| gptkbp:occurredIn |
gptkb:personal_computer
web applications |
| gptkbp:prevention |
input validation
session management proper access controls |
| gptkbp:relatedTo |
privilege escalation
vertical privilege escalation |
| gptkbp:riskFactor |
data breach
unauthorized actions loss of confidentiality |
| gptkbp:bfsParent |
gptkb:Privilege_Escalation
gptkb:Broken_Access_Control |
| gptkbp:bfsLayer |
6
|