CWE-707: Improper Neutralization

Pillar Incomplete Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

The product does not ensure or incorrectly ensures that structured messages or data are well-formed and that certain security properties are met before being read from an upstream component or sent to a downstream component.

常见后果

影响范围: Other

技术影响: Other

引入模式

阶段 说明
Implementation REALIZATION: This weakness is caused during implementation of an architectural security tactic.

适用平台

编程语言
Not Language-Specific (Undetermined)
操作系统
Not OS-Specific (Undetermined)
技术
Not Technology-Specific (Undetermined)
关键信息

CWE ID: CWE-707

抽象级别: Pillar

结构: Simple

状态: Incomplete

相关攻击模式
CAPEC-250 CAPEC-276 CAPEC-277 CAPEC-278 CAPEC-279 CAPEC-3 CAPEC-43 CAPEC-468 CAPEC-52 CAPEC-53 CAPEC-64 CAPEC-7 CAPEC-78 CAPEC-79 CAPEC-83 CAPEC-84
返回列表