Cwe 20

🧬 CWE Related 125
slug: cwe-20

Explanation

CWE-20は「ユーザーから受け取ったデータが、想定された形式・範囲・型かをきちんとチェックせずに使ってしまう欠陥」のことです。 非常に広い概念で、SQLi・XSS・コマンドインジェクションなど多くの攻撃の前段階となります。 「入力は信用するな (Trust Boundaries の概念)」がセキュリティ設計の基本原則です。
📌 Example
多くのCISA KEV登録CVEがこのCWEに分類されており、2024年だけで100件以上の悪用事例があります。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,690

ID Title
CVE-2026-12017 Vulnerability in google (CVE-2026-12017)
CVE-2026-12009 Vulnerability in google (CVE-2026-12009)
CVE-2026-48109 Vulnerability in MessagePack (CVE-2026-48109)
CVE-2026-47181 Vulnerability in CVE-2026-47181 (CVE-2026-47181)
CVE-2026-49982 Vulnerability in tmp (CVE-2026-49982)
CVE-2026-53723 Vulnerability in guzzlehttp/guzzle-services (CVE-2026-53723)
CVE-2026-48998 Vulnerability in guzzlehttp/psr7 (CVE-2026-48998)
CVE-2026-49214 Vulnerability in guzzlehttp/psr7 (CVE-2026-49214)
CVE-2026-53901 Vulnerability in CVE-2026-53901 (CVE-2026-53901)
CVE-2026-49218 Vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-49218)
CVE-2024-21944 Vulnerability in CVE-2024-21944 (CVE-2024-21944)
CVE-2026-48108 Vulnerability in russh (CVE-2026-48108)
CVE-2026-48110 Vulnerability in russh (CVE-2026-48110)
CVE-2026-46669 Vulnerability in openvm (CVE-2026-46669)
CVE-2026-48107 Vulnerability in russh (CVE-2026-48107)
CVE-2026-20256 Vulnerability in splunk (CVE-2026-20256)
CVE-2026-20257 Vulnerability in splunk (CVE-2026-20257)
CVE-2026-20255 Vulnerability in splunk (CVE-2026-20255)
CVE-2026-20254 Vulnerability in splunk (CVE-2026-20254)
CVE-2026-50569 Vulnerability in CVE-2026-50569 (CVE-2026-50569)
CVE-2026-45565 Vulnerability in nginx (CVE-2026-45565)
CVE-2026-45558 Vulnerability in c (CVE-2026-45558)
CVE-2026-45556 Vulnerability in nginx (CVE-2026-45556)
CVE-2026-45328 Vulnerability in c (CVE-2026-45328)
CVE-2026-45329 ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.4 and 6.0, several ESP-TEE secure-service wrappers in esp_secure_services.c and esp_secure_services_iram.c vali...
CVE-2026-41727 Vulnerability in apache (CVE-2026-41727)
CVE-2026-47903 Vulnerability in adobe (CVE-2026-47903)
CVE-2026-34712 Vulnerability in adobe (CVE-2026-34712)
CVE-2026-47930 Vulnerability in adobe (CVE-2026-47930)
CVE-2026-47931 Vulnerability in adobe (CVE-2026-47931)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →