CWE-346β€”Origin Validation Error

PUBLISHEDweakness record
released 2006-07-19 Β· last modified 2025-12-11

Metadata

CWE ID:
CWE-346
Abstraction:
Class
Structure:
Simple
Status:
Draft
Release Date:
2006-07-19
Latest Modification Date:
2025-12-11

Weakness Name

Origin Validation Error

Description

The product does not properly verify that the source of data or communication is valid.

Common Consequences

Scope:
Access Control, Other
Impact:
Gain Privileges or Assume Identity, Varies by Context
Notes:
An attacker can access any functionality that is inadvertently accessible to the source.

Related Weaknesses