CWE-697 - Incorrect Comparison

Description

The software compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.

This weakness class covers several possibilities:

  1. the comparison checks one factor incorrectly;
  2. the comparison should consider multiple factors, but it does not check some of those factors at all;
  3. the comparison checks the wrong factor.




Latest vulnerabilities for CWE-697

Multiple vulnerabilities in IBM MQ Operator 2025-05-21
Critical Yes Public exploit
Multiple vulnerabilities in IBM Knowledge Catalog for IBM Cloud Pak for Data 2025-05-09
High Yes Public exploit
Multiple vulnerabilities in IBM Cloud Pak for Security 2025-04-22
Critical Yes Public exploit
Multiple vulnerabilities in IBM Cloud Pak for AIOps 2025-02-13
High Yes Public exploit
Incorrect Comparison in jpadilla pyjwt 2025-02-13
Low Yes
Multiple vulnerabilities in Dell RecoverPoint for Virtual Machines 2025-01-16
Critical Yes Public exploit
Multiple vulnerabilities in TCPDF 2024-12-30
Low Yes
Multiple vulnerabilities in IBM Cognos Analytics Mobile (iOS) 2024-11-08
High Yes Public exploit
Multiple vulnerabilities in IBM Cognos Analytics Mobile (Android) 2024-11-06
High Yes Public exploit
Incorrect comparison in Junos OS Evolved 2024-10-11
Medium Yes

References

Description of CWE-697 on Mitre website