CWE-1174: ASP.NET Misconfiguration: Improper Model Validation
Export to Word
Description
The ASP.NET application does not use, or incorrectly uses, the model validation framework.
Extended Description
N/A
ThreatScore
Threat Mapped score: 0.0
Industry: Finiancial
Threat priority: Unclassified
Observed Examples (CVEs)
- No observed examples available.
Related Attack Patterns (CAPEC)
N/A
Attack TTPs
N/A
Modes of Introduction
| Phase |
Note |
| Architecture and Design |
N/A |
| Implementation |
N/A |
Common Consequences
- Impact: Unexpected State — Notes: Unchecked input leads to cross-site scripting, process control, and SQL injection vulnerabilities, among others.
Potential Mitigations
Applicable Platforms
- ASP.NET (N/A, Undetermined)
Demonstrative Examples
N/A
Notes
← Back to CWE list