An access right granted to particular users or programmes to perform an extended set of security-relevant operations within an electronic information system that, if misused or compromised, could allow a malicious actor to gain wider access to the resources of a system or organisation
Source: Article 3(14) of Cyber Resilience Act (draft 2022)
