CWE•Class•Incomplete•13 recent CVEs
CWE-1390Weak Authentication
Description
The product uses an authentication mechanism to restrict access to specific users or identities, but the mechanism does not sufficiently prove that the claimed identity is correct.
[object Object]
Common consequences
- Integrity,Confidentiality,Availability,Access Control→Read Application Data,Gain Privileges or Assume Identity,Execute Unauthorized Code or CommandsThis weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.
Related CWEs
Recent CVEs classified under this CWE
CVE-2026-62749.82026-06-05CVE-2026-442378.12026-05-29CVE-2026-493234.32026-05-29CVE-2026-493224.32026-05-29CVE-2026-404177.82026-05-12CVE-2026-02048.02026-04-29CVE-2025-709947.32026-04-23CVE-2026-68869.82026-04-23CVE-2026-324975.32026-03-25CVE-2025-628445.52026-03-20CVE-2025-474795.32025-07-04CVE-2025-395969.82025-04-17CVE-2023-418625.32024-12-13