OWASP broken access control definition

Definition of OWASP broken access control : noun

1. A condition in which software users are allowed access to data or functionality contrary to the defined zero-trust policy by bypassing or manipulating the installed security controls.