CWE•Base•Draft•6 recent CVEs

CWE-349Acceptance of Extraneous Untrusted Data With Trusted Data

Description

The product, when processing trusted data, accepts any untrusted data that is also included with the trusted data, treating the untrusted data as if it were trusted.

Common consequences

Access Control,Integrity→Bypass Protection Mechanism,Modify Application Data
An attacker could package untrusted data with trusted data to bypass protection mechanisms to gain access to and possibly modify sensitive data.

Recent CVEs classified under this CWE

CVE-2026-463425.42026-06-12 CVE-2026-456029.12026-06-09 CVE-2026-4296010.02026-05-20 CVE-2026-445723.72026-05-13 CVE-2026-321628.42026-04-14 CVE-2026-356417.82026-04-10

Description

Common consequences

Related CWEs

Recent CVEs classified under this CWE