CWE-388 - Error Handling

Description

This category represents one of the phyla in the Seven Pernicious Kingdoms vulnerability classification. It includes weaknesses that occur when an application does not properly handle errors that occur during processing. According to the authors of the Seven Pernicious Kingdoms, "Errors and error handling represent a class of API. Errors related to error handling are so common that they deserve a special kingdom of their own. As with 'API Abuse,' there are two ways to introduce an error-related security vulnerability: the most common one is handling errors poorly (or not at all). The second is producing errors that either give out too much information (to possible attackers) or are difficult to handle."

Latest vulnerabilities for CWE-388

Denial of service in Linux kernel mlx5 2024-05-08
Low Yes

Remote denial of service in Linux kernel TLS implementation 2024-04-25
Medium Yes

Multiple vulnerabilities in Juniper Networks Junos cRPD 2024-04-15
High Yes

Multiple vulnerabilities in Juniper Cloud Native Router 2024-04-15
High Yes

Multiple vulnerabilities in IBM QRadar SIEM 2024-04-02
High Yes

Multiple vulnerabilities in HashiCorp Consul 2024-03-28
Medium Yes

Multiple vulnerabilities in Consul 2024-03-27
Medium Yes

Multiple vulnerabilities in IBM Storage Copy Data Management 2024-03-25
Medium Yes

Multiple vulnerabilities in IBM Storage Protect Plus Server 2024-03-22
High Yes

Multiple vulnerabilities in Nomad 2024-03-14
Medium Yes

References

Description of CWE-388 on Mitre website