Cwe 20

🧬 CWE Related 125
slug: cwe-20

Explanation

CWE-20は「ユーザーから受け取ったデータが、想定された形式・範囲・型かをきちんとチェックせずに使ってしまう欠陥」のことです。 非常に広い概念で、SQLi・XSS・コマンドインジェクションなど多くの攻撃の前段階となります。 「入力は信用するな (Trust Boundaries の概念)」がセキュリティ設計の基本原則です。
📌 Example
多くのCISA KEV登録CVEがこのCWEに分類されており、2024年だけで100件以上の悪用事例があります。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,690

ID Title
CVE-2026-47928 Vulnerability in adobe (CVE-2026-47928)
CVE-2026-47909 Vulnerability in adobe (CVE-2026-47909)
CVE-2026-44811 Vulnerability in microsoft (CVE-2026-44811)
CVE-2026-40376 Vulnerability in microsoft (CVE-2026-40376)
CVE-2026-0410 Vulnerability in netgear (CVE-2026-0410)
CVE-2026-0419 Vulnerability in netgear (CVE-2026-0419)
CVE-2026-0412 Vulnerability in netgear (CVE-2026-0412)
CVE-2026-0417 Vulnerability in netgear (CVE-2026-0417)
CVE-2026-0416 Vulnerability in netgear (CVE-2026-0416)
CVE-2026-0415 Vulnerability in netgear (CVE-2026-0415)
CVE-2026-9212 Vulnerability in c (CVE-2026-9212)
CVE-2026-9210 Vulnerability in netgear (CVE-2026-9210)
CVE-2026-9211 Vulnerability in netgear (CVE-2026-9211)
CVE-2026-9213 Vulnerability in netgear (CVE-2026-9213)
CVE-2026-49475 Vulnerability in freeswitch (CVE-2026-49475)
CVE-2026-49840 Vulnerability in freeswitch (CVE-2026-49840)
CVE-2026-48569 Vulnerability in microsoft (CVE-2026-48569)
CVE-2026-48288 Vulnerability in adobe (CVE-2026-48288)
CVE-2026-48289 Vulnerability in adobe (CVE-2026-48289)
CVE-2026-47641 Vulnerability in microsoft (CVE-2026-47641)
CVE-2026-45642 Vulnerability in microsoft (CVE-2026-45642)
CVE-2026-45636 Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.
CVE-2026-11701 Vulnerability in google (CVE-2026-11701)
CVE-2026-11697 Vulnerability in google (CVE-2026-11697)
CVE-2026-11691 Vulnerability in c (CVE-2026-11691)
CVE-2026-11689 Vulnerability in google (CVE-2026-11689)
CVE-2026-11686 Vulnerability in google (CVE-2026-11686)
CVE-2026-11685 Vulnerability in google (CVE-2026-11685)
CVE-2026-11682 Vulnerability in google (CVE-2026-11682)
CVE-2026-11676 Vulnerability in google (CVE-2026-11676)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →