CWE-1259 - CERT CVE

CWE-1259 - Improper Protection of Security Identifiers

The product implements a Security Identifier mechanism to differentiate what actions are allowed or disallowed when a transaction originates from an entity. However, the Security Identifiers are improperly protected.

CAPEC ID Naziv
CAPEC-180 Exploiting Incorrectly Configured Access Control Security Levels