CWE•Class•Incomplete•18 recent CVEs

CWE-706Use of Incorrectly-Resolved Name or Reference

Description

The product uses a name or reference to access a resource, but the name/reference resolves to a resource that is outside of the intended control sphere.

Common consequences

Confidentiality,Integrity→Read Application Data,Modify Application Data

Related CWEs

CWE-664Improper Control of a Resource Through its Lifetime CWE-99Improper Control of Resource Identifiers ('Resource Injection')

Recent CVEs classified under this CWE

CVE-2026-453066.52026-05-28 CVE-2026-87164.32026-05-27 CVE-2026-409128.22026-04-30 CVE-2026-414024.22026-04-28 CVE-2026-422544.02026-04-26 CVE-2026-413543.72026-04-23 CVE-2026-353584.42026-04-22 CVE-2026-411315.02026-04-22 CVE-2026-356668.82026-04-10 CVE-2026-356354.82026-04-09 CVE-2026-350399.12026-04-06 CVE-2026-308565.92026-03-07 CVE-2025-481367.52025-05-16 CVE-2025-308708.12025-04-01 CVE-2025-308498.12025-04-01 CVE-2025-247336.52025-01-24 CVE-2024-537398.12024-11-30 CVE-2024-48877.52024-06-07