CWE-1268 - CERT CVE

CWE-1268 - Agents Included in Control Policy are not Contained in Less-Privileged Policy

The product's hardware-enforced access control for a particular resource improperly accounts for privilege discrepancies between control and write policies.

CAPEC ID Naziv
CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs