PillarDraft
CWE-693Protection Mechanism Failure
Category: other
Description
The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.
This weakness covers three distinct situations. A "missing" protection mechanism occurs when the application does not define any mechanism against a certain class of attack. An "insufficient" protection mechanism might provide some defenses - for example, against the most common attacks - but it does not protect against everything that is intended. Finally, an "ignored" mechanism occurs when a mechanism is available and in active use within the product, but the developer has not applied it in some code path.
Common consequences· 1
- Access Control — Bypass Protection Mechanism
Related CAPEC attack patterns· 17
References
Exploits (incoming)17
Compliance frameworks addressing this (incoming)6
| Type | Target | Confidence | Tier |
|---|---|---|---|
| ComplianceControl | owasp_top10-a04 | 100% | live |
| ComplianceControl | dora-art24 | 100% | live |
| ComplianceControl | dora-art9 | 100% | live |
| ComplianceControl | pci_dss_v4-r1 | 100% | live |
| ComplianceControl | dora-art8 | 100% | live |
| ComplianceControl | nist_csf-id | 100% | live |
(incoming)89
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | 7-Zip Mark of the Web Bypass Vulnerabilitycve-2025-0411 | 0% | live |
| Vulnerability | CVE-2025-12554cve-2025-12554 | 0% | live |
| Vulnerability | CVE-2025-15618cve-2025-15618 | 0% | live |
| Vulnerability | CVE-2025-21384cve-2025-21384 | 0% | live |
| Vulnerability | CVE-2025-22429cve-2025-22429 | 0% | live |
| Vulnerability | CVE-2025-27665cve-2025-27665 | 0% | live |
| Vulnerability | CVE-2025-27700cve-2025-27700 | 0% | live |
| Vulnerability | CVE-2025-31189cve-2025-31189 | 0% | live |
| Vulnerability | CVE-2025-31244cve-2025-31244 | 0% | live |
| Vulnerability | CVE-2025-37124cve-2025-37124 | 0% | live |
| Vulnerability | SolarWinds Web Help Desk Security Control Bypass Vulnerabilitycve-2025-40536 | 0% | live |
| Vulnerability | CVE-2025-41224cve-2025-41224 | 0% | live |
| Vulnerability | CVE-2025-41232cve-2025-41232 | 0% | live |
| Vulnerability | CVE-2025-43261cve-2025-43261 | 0% | live |
| Vulnerability | CVE-2025-43273cve-2025-43273 | 0% | live |
| Vulnerability | CVE-2025-43330cve-2025-43330 | 0% | live |
| Vulnerability | CVE-2025-43728cve-2025-43728 | 0% | live |
| Vulnerability | CVE-2025-46281cve-2025-46281 | 0% | live |
| Vulnerability | CVE-2025-48534cve-2025-48534 | 0% | live |
| Vulnerability | CVE-2025-48602cve-2025-48602 | 0% | live |
| Vulnerability | CVE-2025-48605cve-2025-48605 | 0% | live |
| Vulnerability | CVE-2025-48626cve-2025-48626 | 0% | live |
| Vulnerability | CVE-2025-49740cve-2025-49740 | 0% | live |
| Vulnerability | CVE-2025-54143cve-2025-54143 | 0% | live |
| Vulnerability | CVE-2025-6427cve-2025-6427 | 0% | live |
| Vulnerability | CVE-2025-65318cve-2025-65318 | 0% | live |
| Vulnerability | CVE-2025-65319cve-2025-65319 | 0% | live |
| Vulnerability | CVE-2025-66204cve-2025-66204 | 0% | live |
| Vulnerability | CVE-2025-68668cve-2025-68668 | 0% | live |
| Vulnerability | CVE-2025-69264cve-2025-69264 | 0% | live |
Showing top 30 of 89 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.