CWE-693 - Protection Mechanism Failure

Description

The weakness provokes protection mechanisms failure of the software, used for prevention the product from attacks.
There are 3 cases of the vulnerability:
1. "Missing" protection mechanisms are found in case of detection no mechanisms for fight with a certain attack.
2. "Insufficient" protection mechanisms can guard the system only from the most common threats but it is not enough.
3. "Ignored" protection mechanisms are accessible and acting but the developer didn't use it before for preventing attacks.
The weakness is introduced during Operation, Architecture and Design, Implementation stages. Vulnerability allows attackers easily bypass protection mechanisms.

Latest vulnerabilities for CWE-693

Multiple vulnerabilities in IBM QRadar SIEM 2024-04-12
High Yes

Multiple vulnerabilities in Microsoft Secure Boot 2024-04-10
Medium Yes

SmartScreen prompt bypass in Microsoft Windows 2024-04-09
High Yes

Protection mechanism failure in Amavis 2024-03-15
High Yes

Privilege escalation in Apple iTunes for Windows 2024-03-14
Low Yes

Citrix Hypervisor update for Intel firmware 2024-03-14
Medium Yes

Remote denial of service in Intel processors bus lock 2024-03-13
Medium Yes

Protection Mechanism Failure in RevoWorks 2024-02-29
Low Yes

Privilege escalation in Intel OFU Software 2024-02-28
Low Yes

Multiple vulnerabilities in Hyperion Planning 2024-01-18
High Yes

References

Description of CWE-693 on Mitre website