A01:2021 - Broken Access Control

Share on Twitter Share on Reddit Share on Pinboard Share on Newspipe
Get the object Export to a MISP galaxy Get only values in CSV Get only values in JSON

Description
Access control enforces policy such that users cannot act outside of their intended permissions. Failures typically lead to unauthorized information disclosure, modification, or destruction of all data or performing a business function outside the user's limits.
Owning organization
OWASP
Validating JSON schema
Vulnerabilities (provided by MONARC)
Creator
Cedric
License
Creative Commons Zero v1.0 Universal

Related objects

Definition of the object 
{
    "authors": [
        "OWASP project"
    ],
    "code": "A01:2021",
    "description": "Access control enforces policy such that users cannot act outside of their intended permissions. Failures typically lead to unauthorized information disclosure, modification, or destruction of all data or performing a business function outside the user's limits.",
    "label": "Broken Access Control",
    "language": "EN",
    "uuid": "d9f75297-8bc0-4d97-a17e-6a30c089ae05"
}