CWE-1411: Comprehensive Categorization: Insufficient Verification of Data Authenticity
ID
CWE-1411
Status
Incomplete
Weaknesses in this category are related to insufficient verification of data authenticity.
Relationships
View | Weakness | ||||||
---|---|---|---|---|---|---|---|
# ID | Name | # ID | Name | Abstraction | Structure | Status | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-345 | Insufficient Verification of Data Authenticity | Class | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-346 | Origin Validation Error | Class | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-348 | Use of Less Trusted Source | Base | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-349 | Acceptance of Extraneous Untrusted Data With Trusted Data | Base | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-351 | Insufficient Type Distinction | Base | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-352 | Cross-Site Request Forgery (CSRF) | Compound | Composite | Stable | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-353 | Missing Support for Integrity Check | Base | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-354 | Improper Validation of Integrity Check Value | Base | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-360 | Trust of System Event Data | Base | Simple | Incomplete | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-494 | Download of Code Without Integrity Check | Base | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-616 | Incomplete Identification of Uploaded File Variables (PHP) | Variant | Simple | Incomplete | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-646 | Reliance on File Name or Extension of Externally-Supplied File | Variant | Simple | Incomplete | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-649 | Reliance on Obfuscation or Encryption of Security-Relevant Inputs without Integrity Checking | Base | Simple | Incomplete | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-924 | Improper Enforcement of Message Integrity During Transmission in a Communication Channel | Base | Simple | Incomplete | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-1293 | Missing Source Correlation of Multiple Independent Data | Base | Simple | Draft | |
CWE-1400 | Comprehensive Categorization for Software Assurance Trends | CWE-1385 | Missing Origin Validation in WebSockets | Variant | Simple | Incomplete |
Loading...