CWE-290 - Authentication Bypass by Spoofing

  • 摘要:Base
  • 结构:Simple
  • 状态:Incomplete
  • 发布日期:2006-07-19
  • 更新日期:2025-12-11

名称

Authentication Bypass by Spoofing

描述

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

常见后果

范围:Access Control

影响:Bypass Protection Mechanism, Gain Privileges or Assume Identity

注释:This weakness can allow an attacker to access resources which are not otherwise accessible without proper authentication.

相关 CWE

CWE-287Improper AuthenticationHigh

CWE-1390Weak Authentication