CWE · MITRE source
CWE-283Unverified Ownership
The product does not properly verify that a critical resource is owned by the proper entity.
Last updated: 04 July 2026 00:28 UTC
Cumulative inbound coverage
How completely the frameworks we cross-walk collectively cover this — the verdict is the strongest single mapping (overlapping partials are not summed); breadth shows the corroboration behind it.
Collective: mostly · 3 mapping(s) from 3 framework(s): OWASP-Web 1 (mostly) · STIG windows server 2016 1 (partial) · STIG windows server 2019 1 (partial)
OWASP Top 10 for Web (2025)
This weakness contributes to A01:2025 Broken Access Control.
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2024-27903 | 7.0 | 9.8 | 0.0892 | 2024-07-08 |
CVE-2026-20912 UPD | 7.0 | 9.1 | 0.0042 | 2026-01-22 |
CVE-2021-24500 | 5.5 | 8.1 | 0.0065 | 2021-08-09 |
CVE-2021-24501 | 5.5 | 8.1 | 0.0125 | 2021-08-09 |
CVE-2025-47940 UPD | 5.5 | 7.2 | 0.0038 | 2025-05-20 |
CVE-2025-43882 UPD | 5.5 | 7.8 | 0.0012 | 2025-08-27 |
CVE-2026-26016 | 5.5 | 8.1 | 0.0032 | 2026-02-19 |
CVE-2026-29788 | 5.5 | 7.5 | 0.0026 | 2026-03-06 |
CVE-2026-4269 | 5.5 | 7.5 | 0.0024 | 2026-03-16 |
CVE-2020-8554 | 3.5 | 6.3 | 0.0927 | 2021-01-21 |
CVE-2022-29220 | 3.5 | 6.5 | 0.0046 | 2022-05-31 |
CVE-2024-1853 UPD | 3.5 | 5.5 | 0.0020 | 2024-03-14 |
CVE-2025-1007 | 3.5 | 5.3 | 0.0047 | 2025-02-19 |
CVE-2025-9822 UPD | 3.5 | 5.5 | 0.0022 | 2025-09-03 |
CVE-2025-36091 | 3.5 | 4.3 | 0.0031 | 2025-11-03 |
CVE-2025-12815 | 3.5 | 4.3 | 0.0026 | 2025-11-06 |
CVE-2026-0598 | 3.5 | 4.2 | 0.0022 | 2026-02-06 |
CVE-2026-27486 | 3.5 | 5.3 | 0.0029 | 2026-02-21 |
CVE-2026-40337 | 3.5 | 5.1 | 0.0015 | 2026-04-18 |
CVE-2026-44562 UPD | 3.5 | 6.5 | 0.0029 | 2026-05-15 |
CVE-2026-44707 UPD | 3.5 | 6.8 | 0.0034 | 2026-05-26 |
CVE-2023-30544 | 1.6 | 3.9 | 0.0042 | 2023-04-24 |
CVE-2023-6068 | 1.5 | 3.1 | 0.0034 | 2024-03-04 |