Description

The UI performs the wrong action with respect to the user's request.

Extended Description

N/A

---

ThreatScore

Threat Mapped score: 0.0

Industry: Finiancial

Threat priority: Unclassified

---

Observed Examples (CVEs)

• CVE: CVE-2001-1387

  Network firewall accidentally implements one command line option as if it were another, possibly leading to behavioral infoleak.

• CVE: CVE-2001-0081

  Command line option correctly suppresses a user prompt but does not properly disable a feature, although when the product prompts the user, the feature is properly disabled.

• CVE: CVE-2002-1977

  Product does not "time out" according to user specification, leaving sensitive data available after it has expired.

Related Attack Patterns (CAPEC)

N/A

---

Attack TTPs

N/A

Modes of Introduction

Phase	Note
Implementation	N/A

Common Consequences

Potential Mitigations

Applicable Platforms

• None (Not Language-Specific, Undetermined)

---

Demonstrative Examples

N/A

Notes

← Back to CWE list