BaseIncomplete

CWE-233Improper Handling of Parameters

Category: other

Description

The product does not properly handle when the expected number of parameters, fields, or arguments is not provided in input, or if those parameters are undefined.

Common consequences· 1

  • Integrity — Unexpected State

Related CAPEC attack patterns· 1

CAPEC-39

References

  1. https://cwe.mitre.org/data/definitions/233.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternManipulating Opaque Client-based Data Tokenscapec-39100%live

(incoming)2

TypeTargetConfidenceTier
VulnerabilityCVE-2025-52970cve-2025-529700%live
VulnerabilityCVE-2026-2370cve-2026-23700%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Improper Handling of Values
CWE
Improper Handling of Undefined Parameters
CWE
Improper Handling of Undefined Values
CWE
Improper Handling of Missing Values
CWE
Improper Handling of Extra Parameters
CWE
Improper Validation of Specified Type of Input
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.