CWE-449: The UI Performs the Wrong Action
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The UI performs the wrong action with respect to the user's request.
常见后果
影响范围: Other
技术影响: Quality Degradation Varies by Context
潜在缓解措施
阶段: Testing
描述: Perform extensive functionality testing of the UI. The UI should behave as specified.
观察示例
参考: CVE-2001-1387
Network firewall accidentally implements one command line option as if it were another, possibly leading to behavioral infoleak.
参考: CVE-2001-0081
Command line option correctly suppresses a user prompt but does not properly disable a feature, although when the product prompts the user, the feature is properly disabled.
参考: CVE-2002-1977
Product does not "time out" according to user specification, leaving sensitive data available after it has expired.
引入模式
| 阶段 | 说明 |
|---|---|
| Implementation | - |
适用平台
编程语言
分类映射
| 分类名称 | 条目ID | 条目名称 | 映射适配度 |
|---|---|---|---|
| PLOVER | - | The UI performs the wrong action | - |