CWE-638: Not Using Complete Mediation
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The product does not perform access checks on a resource every time the resource is accessed by an entity, which can create resultant weaknesses if that entity's rights or privileges change over time.
常见后果
影响范围: Integrity Confidentiality Availability Access Control Other
技术影响: Gain Privileges or Assume Identity Execute Unauthorized Code or Commands Bypass Protection Mechanism Read Application Data Other
说明: A user might retain access to a critical resource even after privileges have been revoked, possibly allowing access to privileged functionality or sensitive information, depending on the role of the resource.
潜在缓解措施
阶段: Architecture and Design
描述: Invalidate cached privileges, file handles or descriptors, or other access credentials whenever identities, processes, policies, roles, capabilities or permissions change. Perform complete authentication checks before accepting, caching and reusing data, dynamic content and code (scripts). Avoid caching access control decisions as much as possible.
阶段: Architecture and Design
描述: Identify all possible code paths that might access sensitive resources. If possible, create and use a single interface that performs the access checks, and develop code standards that require use of this interface.
观察示例
参考: CVE-2007-0408
Server does not properly validate client certificates when reusing cached connections.
引入模式
| 阶段 | 说明 |
|---|---|
| Implementation | - |
| Operation | - |
适用平台
编程语言
分类映射
| 分类名称 | 条目ID | 条目名称 | 映射适配度 |
|---|---|---|---|
| Software Fault Patterns | SFP20 | Race Condition Window | - |