CWE-697 - Incorrect Comparison

Description

The software compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.

This weakness class covers several possibilities:

  1. the comparison checks one factor incorrectly;
  2. the comparison should consider multiple factors, but it does not check some of those factors at all;
  3. the comparison checks the wrong factor.




Latest vulnerabilities for CWE-697

Multiple vulnerabilities in IBM Cognos Dashboards on Cloud Pak for Data 2024-02-29
High Yes
Multiple vulnerabilities in IBM QRadar WinCollect Agent 2024-02-16
High Yes
Multiple vulnerabilities in IBM QRadar Use Case Manager 2024-02-15
Medium Yes
Juniper Networks Juniper Secure Analytics update for third-party applications 2024-02-01
Medium Yes
Multiple vulnerabilities in IBM QRadar Deployment Intelligence App 2024-01-25
Medium Yes
Incorrect comparison in Platform Navigator and Automation Assets in IBM Cloud Pak for Integration 2024-01-16
Low Yes
Multiple vulnerabilities in IBM Cloud Pak for Network Automation 2024-01-11
High Yes
Splunk Enterprise Security (ES) update for third-party components 2024-01-09
High Yes
Multiple vulnerabilities in Samsung Mobile Firmware 2024-01-08
Critical Yes
Multiple vulnerabilities in IBM Analyst Workflow 2024-01-05
High Yes

References

Description of CWE-697 on Mitre website