CWE-792: Incomplete Filtering of One or More Instances of Special Elements
low-riskThe product receives data from an upstream component, but does not completely filter one or more instances of special elements before sending it to a downstream component.
Abstraction: Variant
Common Consequences
Integrity
→
Unexpected State
Real-World Examples (5)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2023-20057 | 0.0 | 1.0% | — |
| CVE-2025-47779 | 7.7 | 0.3% | — |
| CVE-2023-25608 | 5.5 | 0.2% | — |
| CVE-2022-22297 | 5.5 | 0.1% | — |
| CVE-2025-12758 | 7.5 | 0.1% | — |
0
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
0/50 · Minimal