CWE-794: Incomplete Filtering of Multiple Instances of Special Elements

ID CWE-794

Abstraction Variant

Structure Simple

Status Incomplete

Number of CVEs 4

The product receives data from an upstream component, but does not filter all instances of a special element before sending it to a downstream component.

Incomplete filtering of this nature may be applied to:

sequential elements (special elements that appear next to each other) or
non-sequential elements (special elements that appear multiple times in different locations).

Modes of Introduction

Phase	Note
Implementation	REALIZATION: This weakness is caused during implementation of an architectural security tactic.

Relationships

View			Weakness
# ID	View	Status	# ID	Name	Abstraction	Structure	Status
CWE-1000	Research Concepts	Draft	CWE-792	Incomplete Filtering of One or More Instances of Special Elements	Variant	Simple	Incomplete

CVEs Published

Based on CVE published date

CVSS Severity

CVSS Severity - By Year

CVSS Base Score

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date