BaseIncomplete

CWE-1287Improper Validation of Specified Type of Input

Category: other

Description

The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.

Common consequences· 1

  • Other — Varies by Context

Potential mitigations· 1

  • [Implementation]

References

  1. https://cwe.mitre.org/data/definitions/1287.html

(incoming)10

TypeTargetConfidenceTier
VulnerabilityCVE-2025-12977cve-2025-129770%live
VulnerabilityCVE-2025-20251cve-2025-202510%live
VulnerabilityCVE-2025-24876cve-2025-248760%live
VulnerabilityCVE-2025-42916cve-2025-429160%live
VulnerabilityCVE-2025-42929cve-2025-429290%live
VulnerabilityCVE-2025-46342cve-2025-463420%live
VulnerabilityCVE-2026-2004cve-2026-20040%live
VulnerabilityCVE-2026-2454cve-2026-24540%live
VulnerabilityCVE-2026-26115cve-2026-261150%live
KEVEntryServiceNow Improper Input Validation Vulnerabilitykev-cve-2024-48790%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Input Validation
CWE
Improper Validation of Syntactic Correctness of Input
CWE
Improper Validation of Consistency within Input
CWE
Improper Handling of Unexpected Data Type
CWE
Improper Handling of Values
CWE
Improper Handling of Parameters
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.