Insecure Preserved Inherited Permissions

A product inherits a set of insecure permissions for an object, e.g. when copying from an archive file, without user awareness or involvement.

  • Source

    CWE Catalog - 4.14

  • Identifier

    CWE-278

  • Status

    Incomplete

Contents

See Also

Comprehensive Categorization: Access Control

Weaknesses in this category are related to access control.

SFP Secondary Cluster: Insecure Resource Permissions

This category identifies Software Fault Patterns (SFPs) within the Insecure Resource Permissions cluster.

Permission Issues

Weaknesses in this category are related to improper assignment or handling of permissions.

Comprehensive CWE Dictionary

This view (slice) covers all the elements in CWE.

Common Weakness Enumeration content on this website is copyright of The MITRE Corporation unless otherwise specified. Use of the Common Weakness Enumeration and the associated references on this website are subject to the Terms of Use as specified by The MITRE Corporation.