CWE-183
Overview
- CWE ID
- 183
- CWE Name
- Permissive List of Allowed Inputs
- CWE Abstraction
- Base
- CWE structure
- Simple
- CWE Status
- Draft
Description
The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are explicitly allowed by policy because the inputs are assumed to be safe, but the list is too permissive - that is, it allows an input that is u