CWE-236: Improper Handling of Undefined Parameters
moderate-riskThe product does not handle or incorrectly handles when a particular parameter, field, or argument name is not defined or supported by the product.
Abstraction: Variant
Common Consequences
Integrity
→
Unexpected State
Real-World Examples (1)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2022-20828 | 6.5 | 53.0% | — |
41
/ 100
moderate-risk
Active Threat
41/50 · Critical
Exploit Availability
0/50 · Minimal