CWE-205: Observable Behavioral Discrepancy

The product's behaviors indicate important differences that may be observed by unauthorized actors in a way that reveals (1) its internal state or decision process, or (2) differences from other products with equivalent functionality.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Base

Abstraction

MITRE classification

Overview

Ideally, a product should provide as little information about its internal operations as possible. Otherwise, attackers could use knowledge of these internal operations to simplify or optimize their attack. In some cases, behavioral discrepancies can be used by attackers to form a side channel.

CWE-205: Observable Behavioral Discrepancy

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Illustrative examples

Terminology & mappings

Mapped taxonomies

Attack patterns

Frequently asked questions

What is CWE-205?

What CVEs are caused by CWE-205?

What are the consequences of CWE-205?

Is CWE-205 actively exploited?

References

Stay ahead of CWE-205

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Illustrative examples

Related weaknesses

Parent

Child

Can precede

Terminology & mappings

Mapped taxonomies

Attack patterns

Frequently asked questions

What is CWE-205?

What CVEs are caused by CWE-205?

What are the consequences of CWE-205?

Is CWE-205 actively exploited?

References

Stay ahead of CWE-205