CWE-657: Violation of Secure Design Principles
The product violates well-established principles for secure design.
Last updated
Overview
This can introduce resultant weaknesses or make it easier for developers to introduce related weaknesses during implementation. Because code is centered around design, it can be resource-intensive to fix design problems.
Real-world CVEs
15 recorded CVEs are caused by CWE-657 (Violation of Secure Design Principles). The highest-severity and most recent are shown first. 1 new CWE-657 CVE has been recorded so far in 2026 (2 in 2025).
- CVE-2026-39888
PraisonAIAgents has a sandbox escape via exception frame traversal in `execute_code` (subprocess mode)
Critical · CVSS 10.0 · EPSS 42th2026-04-08 - CVE-2023-29320
ZDI-CAN-20712: Adobe Acrobat Blacklist Bypass Design flaw
High · CVSS 7.8 · EPSS 91th2023-08-10 - CVE-2019-0061
Junos OS: Insecure management daemon (MGD) configuration may allow local privilege escalation
High · CVSS 7.8 · EPSS 28th