CWE-694 - Use of Multiple Resources with Duplicate Identifier
- Abstraction:Base
- Structure:Simple
- Status:Incomplete
- Release Date:2008-09-09
- Latest Modification Date:2024-02-29
Weakness Name
Use of Multiple Resources with Duplicate Identifier
Description
The product uses multiple resources that can have the same identifier, in a context in which unique identifiers are required.
If the product assumes that each resource has a unique identifier, the product could operate on the wrong resource if attackers can cause multiple resources to be associated with the same identifier.
Common Consequences
Scope: Access Control
Impact: Bypass Protection Mechanism
Notes: If unique identifiers are assumed when protecting sensitive resources, then duplicate identifiers might allow attackers to bypass the protection.
Scope: Other
Impact: Quality Degradation
Related Weaknesses
CWE-99Improper Control of Resource Identifiers ('Resource Injection')High