CWE-654

Reliance on a Single Factor in a Security Decision

AI Translation Available

A protection mechanism relies exclusively, or to a large extent, on the evaluation of a single condition or the integrity of a single object or entity in order to make a decision about granting access to restricted resources or functionality.

Status

draft

Abstraction

base

Affected Platforms

Technical Details

AI Translation

Common Consequences

access control non-repudiation

Impacts

gain privileges or assume identity hide activities

Potential Mitigations

Phases:

architecture and design

Descriptions:

• Use redundant access rules on different choke points (e.g., firewalls).

• Use multiple simultaneous checks before granting access to critical operations or granting critical privileges. A weaker but helpful mitigation is to use several successive checks (multiple layers of security).

AI Generated Translation

Common Consequences

controllo degli accessi non-ripudio

Impacts

ottenere privilegi o assumere identità nascondere attività

Potential Mitigations

Phases:

architettura e design

Descriptions:

• Utilizzare regole di accesso ridondanti su diversi punti di controllo (ad esempio, firewall).

• Utilizzare più controlli simultanei prima di concedere l'accesso a operazioni critiche o di assegnare privilegi critici. Una mitigazione meno efficace ma utile consiste nell'utilizzare diversi controlli successivi (strati multipli di sicurezza).

CWE-654

Common Consequences

Impacts

Potential Mitigations

Common Consequences

Impacts

Potential Mitigations

Iscriviti alla newsletter