CWE-794: Incomplete Filtering of Multiple Instances of Special Elements
ID
CWE-794
Abstraction
Variant
Structure
Simple
Status
Incomplete
Number of CVEs
4
The product receives data from an upstream component, but does not filter all instances of a special element before sending it to a downstream component.
Incomplete filtering of this nature may be applied to:
- sequential elements (special elements that appear next to each other) or
- non-sequential elements (special elements that appear multiple times in different locations).
Modes of Introduction
Phase | Note |
---|---|
Implementation | REALIZATION: This weakness is caused during implementation of an architectural security tactic. |
CVEs Published
CVSS Severity
CVSS Severity - By Year
CVSS Base Score
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |
Loading...