CWE-622 - Improper Validation of Function Hook Argument

Description

A product adds hooks to user-accessible API functions, but does not properly validate the arguments. Such hooks can be used in defensive software that runs with privileges, such as anti-virus or firewall, which hooks kernel calls. When the arguments are not validated, they could be used to bypass the protection scheme or attack the product itself.This weakness is introduced during Implementation stage.

Latest vulnerabilities for CWE-622

DLL loading error in PuTTY 2016-07-08
High No

References

Description of CWE-622 on Mitre website