CWE-648
Incorrect Use of Privileged APIs
The product does not conform to the API requirements for a function call that requires extra privileges. This could allow attackers to gain privileges by causing the function to be called incorrectly.
Official CWE-648 definition at MITREImpactr finds and proves weaknesses like CWE-648 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist