What is the authoritative source for CWE-1390?

Weak Authentication (CWE-1390) is catalogued in MITRE CWE and curated for EU compliance use cases by SQUR.

ClassIncomplete

CWE-1390Weak Authentication

Category: auth

Description

The product uses an authentication mechanism to restrict access to specific users or identities, but the mechanism does not sufficiently prove that the claimed identity is correct.

Common consequences· 1

Integrity / Confidentiality / Availability / Access Control — Read Application Data, Gain Privileges or Assume Identity, Execute Unauthorized Code or Commands
This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code.

References

https://cwe.mitre.org/data/definitions/1390.html

(incoming)28

Type	Target	Confidence	Tier
Vulnerability	CVE-2025-12870cve-2025-12870	0%	live
Vulnerability	CVE-2025-12871cve-2025-12871	0%	live
Vulnerability	CVE-2025-1293cve-2025-1293	0%	live
Vulnerability	CVE-2025-1387cve-2025-1387	0%	live
Vulnerability	CVE-2025-1727cve-2025-1727	0%	live
Vulnerability	CVE-2025-23058cve-2025-23058	0%	live
Vulnerability	CVE-2025-26343cve-2025-26343	0%	live
Vulnerability	CVE-2025-27740cve-2025-27740	0%	live
Vulnerability	CVE-2025-30411cve-2025-30411	0%	live
Vulnerability	CVE-2025-30412cve-2025-30412	0%	live
Vulnerability	CVE-2025-31676cve-2025-31676	0%	live
Vulnerability	CVE-2025-39596cve-2025-39596	0%	live
Vulnerability	CVE-2025-40552cve-2025-40552	0%	live
Vulnerability	CVE-2025-40554cve-2025-40554	0%	live
Vulnerability	CVE-2025-47479cve-2025-47479	0%	live
Vulnerability	CVE-2025-47995cve-2025-47995	0%	live
Vulnerability	CVE-2025-49201cve-2025-49201	0%	live
Vulnerability	CVE-2025-5484cve-2025-5484	0%	live
Vulnerability	CVE-2025-59249cve-2025-59249	0%	live
Vulnerability	CVE-2025-63807cve-2025-63807	0%	live
Vulnerability	CVE-2026-0204cve-2026-0204	0%	live
Vulnerability	CVE-2026-27478cve-2026-27478	0%	live
Vulnerability	CVE-2026-28710cve-2026-28710	0%	live
Vulnerability	CVE-2026-4828cve-2026-4828	0%	live
Vulnerability	CVE-2026-4924cve-2026-4924	0%	live
Vulnerability	CVE-2026-6886cve-2026-6886	0%	live
KEVEntry	Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerabilitykev-cve-2021-38647	0%	live
KEVEntry	Microsoft Open Management Infrastructure (OMI) Privilege Escalation Vulnerabilitykev-cve-2021-38648	0%	live