CWE-942

Overview

CWE ID
942

CWE Name
Permissive Cross-domain Policy with Untrusted Domains

CWE Abstraction
Variant

CWE structure
Simple

CWE Status
Incomplete

Description

The software uses a cross-domain policy file that includes domains that should not be trusted.

Extended Description

Related CWEs

CWE ID	View ID	Nature	Ordinal
284	1000	ChildOf	Primary
183	1000	ChildOf
668	1000	CanPrecede

Related CVEs

CVE
CVE-2022-34366
CVE-2023-2360
CVE-2023-46281
CVE-2023-46098
CVE-2023-45213
CVE-2023-36829
CVE-2023-25603
CVE-2023-50940
CVE-2023-38122
CVE-2023-38125
CVE-2024-37131
CVE-2024-23823
CVE-2024-25124
CVE-2024-21382
CVE-2023-36829
CVE-2023-25603
CVE-2023-50940
CVE-2023-38122
CVE-2023-38125
CVE-2024-37131
CVE-2024-23823
CVE-2024-25124
CVE-2024-21382
CVE-2024-21382
CVE-2024-32862
CVE-2024-41659
CVE-2024-41657
CVE-2024-6449