ClassDraft

CWE-669Incorrect Resource Transfer Between Spheres

Category: logic

Description

The product does not properly transfer a resource/behavior to another sphere, or improperly imports a resource/behavior from another sphere, in a manner that provides unintended control over that resource.

Common consequences· 1

  • Confidentiality / Integrity — Read Application Data, Modify Application Data, Unexpected State

References

  1. https://cwe.mitre.org/data/definitions/669.html

(incoming)11

TypeTargetConfidenceTier
VulnerabilityCVE-2025-34158cve-2025-341580%live
VulnerabilityCVE-2025-41645cve-2025-416450%live
VulnerabilityCVE-2025-41660cve-2025-416600%live
VulnerabilityCVE-2025-62775cve-2025-627750%live
VulnerabilityCVE-2025-67895cve-2025-678950%live
VulnerabilityCVE-2026-24708cve-2026-247080%live
VulnerabilityCVE-2026-25253cve-2026-252530%live
VulnerabilityLinux Kernel Incorrect Resource Transfer Between Spheres Vulnerabilitycve-2026-314310%live
VulnerabilityCVE-2026-33265cve-2026-332650%live
VulnerabilityCVE-2026-35545cve-2026-355450%live
KEVEntryLinux Kernel Incorrect Resource Transfer Between Spheres Vulnerabilitykev-cve-2026-314310%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Exposure of Resource to Wrong Sphere
CWE
Incorrect Type Conversion or Cast
CWE
Incorrect Ownership Assignment
CWE
Improper Control of a Resource Through its Lifetime
CWE
Improper Privilege Management
CWE
Externally Controlled Reference to a Resource in Another Sphere
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.