CWE-1254: Incorrect Comparison Logic Granularity

The product's comparison logic is performed over a series of steps rather than across the entire string in one operation. If there is a comparison logic failure on one of these steps, the operation may be vulnerable to a timing attack that can result in the interception of the process for nefarious purposes.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Base

Abstraction

MITRE classification

Overview

Comparison logic is used to compare a variety of objects including passwords, Message Authentication Codes (MACs), and responses to verification challenges. When comparison logic is implemented at a finer granularity (e.g., byte-by-byte comparison) and breaks in the case of a comparison failure, an attacker can exploit this implementation to identify when exactly the failure occurred. With multiple attempts, the attacker may be able to guesses the correct password/response to challenge and elevate their privileges.

CWE-1254: Incorrect Comparison Logic Granularity

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

Illustrative examples

Attack patterns

Frequently asked questions

What is CWE-1254?

What CVEs are caused by CWE-1254?

How do you prevent CWE-1254?

What are the consequences of CWE-1254?

Is CWE-1254 actively exploited?

References

Stay ahead of CWE-1254

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

Illustrative examples

Related weaknesses

Parent

Peer

Attack patterns

Frequently asked questions

What is CWE-1254?

What CVEs are caused by CWE-1254?

How do you prevent CWE-1254?

What are the consequences of CWE-1254?

Is CWE-1254 actively exploited?

References

Stay ahead of CWE-1254