CWE-940: Improper Verification of Source of a Communication Channel

CWE-940: Improper Verification of Source of a Communication Channel | RadicalNotion.AI

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

This Android application will remove a user account when it receives an intent to do so:

Vulnerable example

java

IntentFilter filter = new IntentFilter("com.example.RemoveUser");

This application does not check the origin of the intent, thus allowing any malicious application to remove a user. Always check the origin of an intent, or create an allowlist of trusted applications using the manifest.xml file.

These Android and iOS applications intercept URL loading within a WebView and perform special actions if a particular URL scheme is used, thus allowing the Javascript within the WebView to communicate with the application:

Vulnerable example

java

// Android

Vulnerable example

objectivec

// iOS

Attack input

javascript

window.location = examplescheme://method?parameter=value

CWE-940: Improper Verification of Source of a Communication Channel

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to prevent it

Code examples

Illustrative examples

Attack patterns

Frequently asked questions

What is CWE-940?

What CVEs are caused by CWE-940?

How do you prevent CWE-940?

What are the consequences of CWE-940?

Is CWE-940 actively exploited?

References

Stay ahead of CWE-940

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to prevent it

Code examples

Illustrative examples

Related weaknesses

Parent

Child

Attack patterns

Frequently asked questions

What is CWE-940?

What CVEs are caused by CWE-940?

How do you prevent CWE-940?

What are the consequences of CWE-940?

Is CWE-940 actively exploited?

References

Stay ahead of CWE-940