CWE-638
Not Using Complete Mediation
The product does not perform access checks on a resource every time the resource is accessed by an entity, which can create resultant weaknesses if that entity's rights or privileges change over time.
Official CWE-638 definition at MITREImpactr finds and proves weaknesses like CWE-638 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist