Missing Authorization
Because of this weakness the software can't determine whether the authorization of the actor, trying to gain access to any data or carry out some actions was correct and acurate or no.
Lack of access control checking let any user to access all resourses and actions they want. It can cause information exposures, denial of service, and arbitrary code execution.
Such weakness gives attackers ability to read and alter sensitive data and also get access to privileged functionality.
The vulnerability is introduced during Architecture and Design, Implementation and Operation stages.
Lack of access control checking let any user to access all resourses and actions they want. It can cause information exposures, denial of service, and arbitrary code execution.
Such weakness gives attackers ability to read and alter sensitive data and also get access to privileged functionality.
The vulnerability is introduced during Architecture and Design, Implementation and Operation stages.