Cwe 20

🧬 CWE Related 125
slug: cwe-20

Explanation

CWE-20は「ユーザーから受け取ったデータが、想定された形式・範囲・型かをきちんとチェックせずに使ってしまう欠陥」のことです。 非常に広い概念で、SQLi・XSS・コマンドインジェクションなど多くの攻撃の前段階となります。 「入力は信用するな (Trust Boundaries の概念)」がセキュリティ設計の基本原則です。
📌 Example
多くのCISA KEV登録CVEがこのCWEに分類されており、2024年だけで100件以上の悪用事例があります。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,695

ID Title
CVE-2026-11119 Vulnerability in google (CVE-2026-11119)
CVE-2026-11112 Vulnerability in google (CVE-2026-11112)
CVE-2026-11105 Vulnerability in google (CVE-2026-11105)
CVE-2026-11113 Vulnerability in google (CVE-2026-11113)
CVE-2026-11098 Vulnerability in google (CVE-2026-11098)
CVE-2026-11095 Vulnerability in google (CVE-2026-11095)
CVE-2026-11093 Vulnerability in google (CVE-2026-11093)
CVE-2026-11086 Vulnerability in google (CVE-2026-11086)
CVE-2026-11079 Vulnerability in google (CVE-2026-11079)
CVE-2026-11078 Vulnerability in google (CVE-2026-11078)
CVE-2026-11066 Vulnerability in google (CVE-2026-11066)
CVE-2026-11070 Vulnerability in google (CVE-2026-11070)
CVE-2026-11069 Vulnerability in google (CVE-2026-11069)
CVE-2026-11056 Vulnerability in google (CVE-2026-11056)
CVE-2026-11063 Vulnerability in google (CVE-2026-11063)
CVE-2026-11046 Vulnerability in google (CVE-2026-11046)
CVE-2026-11047 Vulnerability in google (CVE-2026-11047)
CVE-2026-11041 Vulnerability in google (CVE-2026-11041)
CVE-2026-11045 Vulnerability in google (CVE-2026-11045)
CVE-2026-11031 Vulnerability in google (CVE-2026-11031)
CVE-2026-11034 Vulnerability in google (CVE-2026-11034)
CVE-2026-11035 Vulnerability in privilege-escalation (CVE-2026-11035)
CVE-2026-11038 Vulnerability in google (CVE-2026-11038)
CVE-2026-11021 Vulnerability in google (CVE-2026-11021)
CVE-2026-11023 Vulnerability in google (CVE-2026-11023)
CVE-2026-11029 Vulnerability in google (CVE-2026-11029)
CVE-2026-11027 Vulnerability in google (CVE-2026-11027)
CVE-2026-11022 Vulnerability in google (CVE-2026-11022)
CVE-2026-11016 Vulnerability in google (CVE-2026-11016)
CVE-2026-11013 Vulnerability in google (CVE-2026-11013)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →