Register
Login
Toggle navigation
SaaS Solutions
Vulnerability Intelligence
Vulnerability Management
Pricing
Vulnerabilities
Reports
Blog
Contact Us
Main
Vulnerability Database
CWE List
CWE-349 - Acceptance of Extraneous Untrusted Data With Trusted Data
Description
The product, when processing trusted data, accepts any untrusted data that is also included with the trusted data, treating the untrusted data as if it were trusted.
Latest vulnerabilities for CWE-349
Multiple vulnerabilities in Microsoft Word
2025-04-09
High
Yes
Multiple vulnerabilities in IBM QRadar Pre-Validation App
2024-11-25
Medium
Yes
Public exploit
Multiple vulnerabilities in QRadar Suite Software
2024-11-08
High
Yes
Public exploit
Cache poisoning in Next.js
2024-09-18
Medium
Yes
Public exploit
Acceptance of Extraneous Untrusted Data With Trusted Data in EC-CUBE
2024-07-30
Low
Yes
Multiple vulnerabilities in Siemens SCALANCE W700 802.11 AX Family
2024-06-14
Medium
No
MitM attack in aiosmtpd
2024-06-10
Medium
Yes
Multiple vulnerabilities in Siemens SCALANCE M-800/S615 Family
2023-12-13
Low
Yes
Multiple vulnerabilities in Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family
2023-11-22
Medium
Yes
Multiple vulnerabilities in Moodle
2023-10-18
Medium
Yes
References
Description of CWE-349 on Mitre website