Identity Management / Members in Schema Admins Group
Members in Schema Admins group is an IT vulnerability that falls under the Identity Management category. It occurs in Infrastructure, where the members of the Schema Admins group are given excessive privileges. This vulnerability is classified as CWE-267: Permissions, Privileges, and Access Controls. It is also an important factor in the OWASP Testing Guide for testing authorization.
The vulnerability of having members in the Schema Admins group can expose sensitive information and create an opportunity for attackers to gain access to the system. The risk assessment of this vulnerability is high as the system is exposed to potential damage or exploitation.
The best solution to this vulnerability is to remove all unnecessary members or accounts from the Schema Admins group. This will ensure that the system is not vulnerable to unauthorized access or exploitation.