CWE-689: Permission Race Condition During Resource Copy
The product, while copying or cloning a resource, does not set the resource's permissions or access control until the copy is complete, leaving the resource exposed to other spheres while the copy is taking place.
Last updated
Overview
CWE-689 (Permission Race Condition During Resource Copy) is a compound-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.
Real-world CVEs
3 recorded CVEs are caused by CWE-689 (Permission Race Condition During Resource Copy). The highest-severity and most recent are shown first. 0 new CWE-689 CVEs have been recorded so far in 2026 (2 in 2025).