CWE-358: Improperly Implemented Security Check for Standard

The product does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Base

Abstraction

MITRE classification

Overview

CWE-358 (Improperly Implemented Security Check for Standard) is a base-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.

CWE-358: Improperly Implemented Security Check for Standard

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Illustrative examples

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-358?

What CVEs are caused by CWE-358?

What are the consequences of CWE-358?

Is CWE-358 actively exploited?

References

Stay ahead of CWE-358

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Illustrative examples

Related weaknesses

Parent

Peer

Can also be

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-358?

What CVEs are caused by CWE-358?

What are the consequences of CWE-358?

Is CWE-358 actively exploited?

References

Stay ahead of CWE-358