CWE-286: Incorrect User Management
low-riskThe product does not properly manage a user within its environment.
Abstraction: Class
Common Consequences
Other
→
Varies by Context
Real-World Examples (10)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2024-29296 | 5.3 | 10.3% | — |
| CVE-2024-28020 | 8.0 | 0.3% | — |
| CVE-2024-48853 | 9.0 | 0.3% | — |
| CVE-2023-51750 | 4.6 | 0.2% | — |
| CVE-2024-46671 | 6.2 | 0.2% | — |
| CVE-2024-45425 | 4.9 | 0.2% | — |
| CVE-2022-45857 | 6.5 | 0.2% | — |
| CVE-2022-35503 | 7.5 | 0.2% | — |
| CVE-2023-26689 | 9.8 | 0.2% | — |
| CVE-2024-13041 | 4.2 | 0.1% | — |
1
/ 100
low-risk
Active Threat
1/50 · Minimal
Exploit Availability
0/50 · Minimal