CWE-450: Multiple Interpretations of UI Input
low-riskThe UI has multiple interpretations of user input but does not prompt the user when it selects the less secure interpretation.
Abstraction: Base
Common Consequences
Other
→
Varies by Context
Real-World Examples (3)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2022-20863 | 4.3 | 0.4% | — |
| CVE-2021-1242 | 4.3 | 0.4% | — |
| CVE-2024-25858 | 8.4 | 0.1% | — |
0
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
0/50 · Minimal