CWE-924

Improper Enforcement of Message Integrity During Transmission in a Communication Channel

AI Translation Available

The product establishes a communication channel with an endpoint and receives a message from that endpoint, but it does not sufficiently ensure that the message was not modified during transmission.

Status

incomplete

Abstraction

base

Affected Platforms

Extended Description

AI Translation

Attackers might be able to modify the message and spoof the endpoint by interfering with the data as it crosses the network or by redirecting the connection to a system under their control.

Technical Details

AI Translation

Common Consequences

integrity confidentiality

Impacts

gain privileges or assume identity

CWE-924

Common Consequences

Impacts

Potential Mitigations

Common Consequences

Impacts

Potential Mitigations

CWE-924

Common Consequences

Impacts

Potential Mitigations

Common Consequences

Impacts

Potential Mitigations

Iscriviti alla newsletter