CWE-424

Improper Protection of Alternate Path

AI Translation Available

The product does not sufficiently protect all possible paths that a user can take to access restricted functionality or resources.

Status

draft

Abstraction

class

Affected Platforms

Not Technology-Specific Web Based

Technical Details

AI Translation

access control

bypass protection mechanism gain privileges or assume identity

Phases:

architecture and design

Descriptions:

• Deploy different layers of protection to implement security in depth.

AI Generated Translation

controllo degli accessi

elusione del meccanismo di protezione ottenere privilegi o assumere identità

Phases:

architettura e design

Descriptions:

• Implementare diversi livelli di protezione per attuare la sicurezza in profondità.