CWE-303Incorrect Implementation of Authentication Algorithm

PUBLISHEDweakness record
released 2006-07-19 · last modified 2025-12-11

Metadata

CWE ID:
CWE-303
摘要:
Base
结构:
Simple
状态:
Draft
发布日期:
2006-07-19
更新日期:
2025-12-11

名称

Incorrect Implementation of Authentication Algorithm

描述

The requirements for the product dictate the use of an established authentication algorithm, but the implementation of the algorithm is incorrect.

This incorrect implementation may allow authentication to be bypassed.

常见后果

范围:
Access Control
影响:
Bypass Protection Mechanism

相关 CWE