CWE-349 - Acceptance of Extraneous Untrusted Data With Trusted Data

Description

The product, when processing trusted data, accepts any untrusted data that is also included with the trusted data, treating the untrusted data as if it were trusted.

Latest vulnerabilities for CWE-349

Multiple vulnerabilities in Siemens SCALANCE M-800/S615 Family 2023-12-13
Low Yes

Multiple vulnerabilities in Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family 2023-11-22
Medium Yes

Multiple vulnerabilities in Moodle 2023-10-18
Medium Yes

Acceptance of Extraneous Untrusted Data With Trusted Data in Sensormatic Electronics VideoEdge 2023-08-04
Low Yes

References

Description of CWE-349 on Mitre website