CWE · MITRE source
CWE-274Improper Handling of Insufficient Privileges
The product does not handle or incorrectly handles when it has insufficient privileges to perform an operation, leading to resultant weaknesses.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2025-20156 | 2.2 | 9.9 | 0.0338 | 2025-01-22 |
CVE-2025-29365 | 2.0 | 9.8 | 0.0013 | 2025-08-22 |
CVE-2020-7264 | 1.8 | 8.8 | 0.0003 | 2020-05-08 |
CVE-2020-7265 | 1.8 | 8.8 | 0.0003 | 2020-05-08 |
CVE-2020-7266 | 1.8 | 8.8 | 0.0003 | 2020-05-08 |
CVE-2020-7267 | 1.8 | 8.8 | 0.0003 | 2020-05-08 |
CVE-2024-0105 | 1.8 | 8.9 | 0.0008 | 2024-11-01 |
CVE-2022-45101 | 1.7 | 7.3 | 0.0423 | 2023-02-01 |
CVE-2023-35928 | 1.7 | 8.4 | 0.0046 | 2023-06-23 |
CVE-2024-0106 | 1.7 | 8.7 | 0.0006 | 2024-11-01 |
CVE-2020-7285 | 1.6 | 7.8 | 0.0005 | 2020-05-08 |
CVE-2020-7286 | 1.6 | 7.8 | 0.0005 | 2020-05-08 |
CVE-2020-7287 | 1.6 | 7.8 | 0.0005 | 2020-05-08 |
CVE-2020-7288 | 1.6 | 7.8 | 0.0005 | 2020-05-08 |
CVE-2020-7289 | 1.6 | 7.8 | 0.0005 | 2020-05-08 |
CVE-2020-7290 | 1.6 | 7.8 | 0.0005 | 2020-05-08 |
CVE-2020-7291 | 1.6 | 7.8 | 0.0005 | 2020-05-08 |
CVE-2020-24676 | 1.6 | 7.8 | 0.0004 | 2020-12-22 |
CVE-2024-21648 | 1.6 | 8.0 | 0.0034 | 2024-01-09 |
CVE-2024-46974 | 1.6 | 7.8 | 0.0009 | 2025-01-31 |
CVE-2020-7283 | 1.5 | 7.5 | 0.0034 | 2020-07-03 |
CVE-2023-39375 | 1.5 | 7.5 | 0.0015 | 2023-09-27 |
CVE-2018-6674 | 1.4 | 6.8 | 0.0002 | 2018-05-25 |
CVE-2021-35534 | 1.4 | 7.2 | 0.0015 | 2021-11-18 |
CVE-2022-23511 | 1.4 | 7.1 | 0.0025 | 2022-12-12 |