CWE-273

Improper Check for Dropped Privileges

Description

The product attempts to drop privileges but does not check or incorrectly checks to see if the drop succeeded.

If the drop fails, the product will continue to run with the raised privileges, which might provide additional access to unprivileged users.

Source: MITRE CWE™ — CWE-273