CWE-697 - Incorrect Comparison

Description

The software compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.

This weakness class covers several possibilities:

the comparison checks one factor incorrectly;
the comparison should consider multiple factors, but it does not check some of those factors at all;
the comparison checks the wrong factor.

Multiple vulnerabilities in IBM Cloud Pak for Security 2025-04-22
Critical Yes Public exploit

Multiple vulnerabilities in IBM Cloud Pak for AIOps 2025-02-13
High Yes Public exploit

Incorrect Comparison in jpadilla pyjwt 2025-02-13
Low Yes

Multiple vulnerabilities in Dell RecoverPoint for Virtual Machines 2025-01-16
Critical Yes Public exploit

Multiple vulnerabilities in TCPDF 2024-12-30
Low Yes

Multiple vulnerabilities in IBM Cognos Analytics Mobile (iOS) 2024-11-08
High Yes Public exploit

Multiple vulnerabilities in IBM Cognos Analytics Mobile (Android) 2024-11-06
High Yes Public exploit

Incorrect comparison in Junos OS Evolved 2024-10-11
Medium Yes

IBM watsonx.data update for Python 2024-09-26
Medium Yes

Multiple vulnerabilities in IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data 2024-08-27
High Yes