CWE-155 - Improper Neutralization of Wildcards or Matching Symbols

Description

The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as wildcards or matching symbols when they are sent to a downstream component.

Latest vulnerabilities for CWE-155

Multiple vulnerabilities in New Rock Technologies Cloud Connected Devices 2025-01-31
High No

Multiple vulnerabilities in Palo Alto Networks Expedition 2025-01-08
Medium Yes

Multiple vulnerabilities in Ruijie Reyee OS 2024-12-04
High Yes

Multiple vulnerabilities in Palo Alto PAN-OS 2024-09-11
Medium Yes

References

Description of CWE-155 on Mitre website