CWE-480: Use of Incorrect Operator
low-riskThe product accidentally uses the wrong operator, which changes the logic in security-relevant ways.
Abstraction: Base
Common Consequences
Other
→
Alter Execution Logic
Detection Methods
Automated Static Analysis
This weakness can be found easily using static analysis. However in some cases an operator might appear to be incorrect, but is actually correct and reflects unusual logic within the program.
Manual Static Analysis
This weakness can be found easily using static analysis. However in some cases an operator might appear to be incorrect, but is actually correct and reflects unusual logic within the program.
Real-World Examples (4)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2022-1947 | 6.5 | 0.5% | — |
| CVE-2024-35190 | 5.8 | 0.3% | — |
| CVE-2026-4748 | 7.5 | 0.0% | — |
| CVE-2025-52985 | 5.3 | 0.0% | — |
0
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
0/50 · Minimal