crossprivilege

Crossprivilege, sometimes written cross-privilege, is a term used in cybersecurity and systems engineering to describe a situation in which an actor or process gains or is permitted to operate across privilege boundaries that would normally constrain it. The concept covers both privilege escalation and privilege crossing between domains, applications, or trust boundaries, enabling actions at a higher privilege than intended or access to resources outside the actor’s nominal scope.

In practice, crossprivilege can arise through misconfigurations, design flaws, or weaknesses in trust models, such as

Contexts include cloud platforms with shared services, enterprise systems integrating with partner domains, and web applications

Mitigation involves strict boundary enforcement, least privilege, explicit scope checks for tokens and API calls, robust

Crossprivilege is a broad concept rather than a single vulnerability, used to describe a class of risks