CWE-793 – Only Filtering One Instance of a Special Element

Read Time:20 Second

Description

The software receives data from an upstream component, but only filters a single instance of a special element before sending it to a downstream component.

Incomplete filtering of this nature may be location-dependent, as in only the first or last element is filtered.

Modes of Introduction:

– Implementation

Likelihood of Exploit:

 

Related Weaknesses

CWE-792

 

Consequences

Integrity: Unexpected State

 

Potential Mitigations

CVE References