ClassIncomplete

CWE-1023Incomplete Comparison with Missing Factors

Category: other

Description

The product performs a comparison between entities that must consider multiple factors or characteristics of each entity, but the comparison does not include one or more of these factors.

Common consequences· 1

  • Integrity / Access Control — Alter Execution Logic, Bypass Protection Mechanism
    An incomplete comparison can lead to resultant weaknesses, e.g., by operating on the wrong object or making a security decision without considering a required factor.

References

  1. https://cwe.mitre.org/data/definitions/1023.html

(incoming)1

TypeTargetConfidenceTier
VulnerabilityCVE-2026-4599cve-2026-45990%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Comparison of Incompatible Types
CWE
Comparison Using Wrong Factors
CWE
Incorrect Comparison
CWE
Failure to Handle Incomplete Element
CWE
Persistent Storable Data Element without Associated Comparison Control Element
CWE
Improper Validation of Consistency within Input
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.