CWE-302

Overview

CWE ID
302

CWE Name
Authentication Bypass by Assumed-Immutable Data

CWE Abstraction
Variant

CWE structure
Simple

CWE Status
Incomplete

Description

The authentication scheme or implementation uses key data elements that are assumed to be immutable, but can be controlled or modified by the attacker.

Extended Description

Related CWEs

CWE ID	View ID	Nature	Ordinal
1390	1000	ChildOf	Primary
807	1000	ChildOf

Related CVEs

CVE
CVE-2021-1399
CVE-2022-2503
CVE-2022-3875
CVE-2022-22729
CVE-2024-3741
CVE-2023-4669
CVE-2023-47127
CVE-2024-22179
CVE-2024-22179
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-47086
CVE-2024-49056