CWE-565

Overview

CWE ID
565

CWE Name
Reliance on Cookies without Validation and Integrity Checking

CWE Abstraction
Base

CWE structure
Simple

CWE Status
Incomplete

Description

The application relies on the existence or values of cookies when performing security-critical operations, but it does not properly ensure that the setting is valid for the associated user.

Extended Description

Attackers can easily modify cookies, within the browser or by implementing the client-side code outside of the browser. Reliance on cookies without detailed validation and integrity checking can allow attackers to bypass authentication, conduct injection

Related CWEs

CWE ID	View ID	Nature	Ordinal
642	1000	ChildOf	Primary
669	1003	ChildOf	Primary
602	1000	ChildOf

Related CVEs

CVE
CVE-2021-41819
CVE-2022-28113
CVE-2020-7070
CVE-2021-3818
CVE-2021-33842
CVE-2021-28171
CVE-2020-26955
CVE-2018-5190
CVE-2020-4749
CVE-2019-4688
CVE-2018-19224
CVE-2019-4638
CVE-2012-5631
CVE-2019-4330
CVE-2019-17104
CVE-2019-4305
CVE-2019-7266
CVE-2017-6896
CVE-2017-7279
CVE-2017-8034
CVE-2011-3887
CVE-2018-20512
CVE-2022-22785
CVE-2016-15002
CVE-2022-35284
CVE-2022-2615
CVE-2022-38297
CVE-2021-36338
CVE-2022-3083
CVE-2022-29248
CVE-2022-30620
CVE-2022-1148
CVE-2023-41084
CVE-2023-45128
CVE-2023-45141
CVE-2023-32725
CVE-2024-28233
CVE-2024-22186
CVE-2024-21872
CVE-2024-28233
CVE-2024-22186
CVE-2024-21872
CVE-2024-21872
CVE-2024-0947