Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CWE-707:Improper Neutralization
Weakness ID:707
Version:v4.17
Weakness Name:Improper Neutralization
Vulnerability Mapping:Discouraged
Abstraction:Pillar
Structure:Simple
Status:Incomplete
Likelihood of Exploit:
DetailsContent HistoryObserved CVE ExamplesReports
▼Description

The product does not ensure or incorrectly ensures that structured messages or data are well-formed and that certain security properties are met before being read from an upstream component or sent to a downstream component.

▼Extended Description

If a message is malformed, it may cause the message to be incorrectly interpreted.

Neutralization is an abstract term for any technique that ensures that input (and output) conforms with expectations and is "safe." This can be done by:

  • checking that the input/output is already "safe" (e.g. validation)
  • transformation of the input/output to be "safe" using techniques such as filtering, encoding/decoding, escaping/unescaping, quoting/unquoting, or canonicalization
  • preventing the input/output from being directly provided by an attacker (e.g. "indirect selection" that maps externally-provided values to internally-controlled values)
  • preventing the input/output from being processed at all

This weakness typically applies in cases where the product prepares a control message that another process must act on, such as a command or query, and malicious input that was intended as data, can enter the control plane instead. However, this weakness also applies to more general cases where there are not always control implications.

▼Alternate Terms
▼Relationships
Relevant to the view"Research Concepts - (1000)"
NatureMappingTypeIDName
MemberOfProhibitedV1000Research Concepts
ParentOfAllowed-with-ReviewC116Improper Encoding or Escaping of Output
ParentOfDiscouragedC138Improper Neutralization of Special Elements
ParentOfDiscouragedB1426Improper Validation of Generative AI Output
ParentOfAllowedB170Improper Null Termination
ParentOfAllowed-with-ReviewC172Encoding Error
ParentOfAllowedB182Collapse of Data into Unsafe Value
ParentOfDiscouragedC20Improper Input Validation
ParentOfAllowedB240Improper Handling of Inconsistent Structural Elements
ParentOfAllowed-with-ReviewC228Improper Handling of Syntactically Invalid Structure
ParentOfAllowedB463Deletion of Data Structure Sentinel
ParentOfDiscouragedC74Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
Nature: MemberOf
Mapping: Prohibited
Type: View
ID: 1000
Name: Research Concepts
Nature: ParentOf
Mapping: Allowed-with-Review
Type: Class
ID: 116
Name: Improper Encoding or Escaping of Output
Nature: ParentOf
Mapping: Discouraged
Type: Class
ID: 138
Name: Improper Neutralization of Special Elements
Nature: ParentOf
Mapping: Discouraged
Type: Base
ID: 1426
Name: Improper Validation of Generative AI Output
Nature: ParentOf
Mapping: Allowed
Type: Base
ID: 170
Name: Improper Null Termination
Nature: ParentOf
Mapping: Allowed-with-Review
Type: Class
ID: 172
Name: Encoding Error
Nature: ParentOf
Mapping: Allowed
Type: Base
ID: 182
Name: Collapse of Data into Unsafe Value
Nature: ParentOf
Mapping: Discouraged
Type: Class
ID: 20
Name: Improper Input Validation
Nature: ParentOf
Mapping: Allowed
Type: Base
ID: 240
Name: Improper Handling of Inconsistent Structural Elements
Nature: ParentOf
Mapping: Allowed-with-Review
Type: Class
ID: 228
Name: Improper Handling of Syntactically Invalid Structure
Nature: ParentOf
Mapping: Allowed
Type: Base
ID: 463
Name: Deletion of Data Structure Sentinel
Nature: ParentOf
Mapping: Discouraged
Type: Class
ID: 74
Name: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
▼Memberships
NatureMappingTypeIDName
MemberOfProhibitedC990SFP Secondary Cluster: Tainted Input to Command
MemberOfProhibitedC1020Verify Message Integrity
MemberOfProhibitedC1370ICS Supply Chain: Common Mode Frailties
MemberOfProhibitedC1407Comprehensive Categorization: Improper Neutralization
Nature: MemberOf
Mapping: Prohibited
Type:Category
ID: 990
Name: SFP Secondary Cluster: Tainted Input to Command
Nature: MemberOf
Mapping: Prohibited
Type:Category
ID: 1020
Name: Verify Message Integrity
Nature: MemberOf
Mapping: Prohibited
Type:Category
ID: 1370
Name: ICS Supply Chain: Common Mode Frailties
Nature: MemberOf
Mapping: Prohibited
Type:Category
ID: 1407
Name: Comprehensive Categorization: Improper Neutralization
▼Tags
NatureMappingTypeIDName
MemberOfProhibitedBSBOSS-294Not Language-Specific Weaknesses
MemberOfProhibitedBSBOSS-298Not OS-Specific(os class) Weaknesses
MemberOfProhibitedBSBOSS-301Not Architecture-Specific (architecture class) Weaknesses
MemberOfProhibitedBSBOSS-307Not Technology-Specific (technology class) Weaknesses
MemberOfProhibitedBSBOSS-312Other (impact)
Nature: MemberOf
Mapping: Prohibited
Type:BOSSView
ID: BOSS-294
Name: Not Language-Specific Weaknesses
Nature: MemberOf
Mapping: Prohibited
Type:BOSSView
ID: BOSS-298
Name: Not OS-Specific(os class) Weaknesses
Nature: MemberOf
Mapping: Prohibited
Type:BOSSView
ID: BOSS-301
Name: Not Architecture-Specific (architecture class) Weaknesses
Nature: MemberOf
Mapping: Prohibited
Type:BOSSView
ID: BOSS-307
Name: Not Technology-Specific (technology class) Weaknesses
Nature: MemberOf
Mapping: Prohibited
Type:BOSSView
ID: BOSS-312
Name: Other (impact)
▼Relevant To View
Relevant to the view"Architectural Concepts - (1008)"
NatureMappingTypeIDName
MemberOfProhibitedC1020Verify Message Integrity
Nature: MemberOf
Mapping: Prohibited
Type: Category
ID: 1020
Name: Verify Message Integrity
Relevant to the view"SEI ETF Categories of Security Vulnerabilities in ICS - (1358)"
NatureMappingTypeIDName
MemberOfProhibitedC1370ICS Supply Chain: Common Mode Frailties
Nature: MemberOf
Mapping: Prohibited
Type: Category
ID: 1370
Name: ICS Supply Chain: Common Mode Frailties
Relevant to the view"Software Fault Pattern (SFP) Clusters - (888)"
NatureMappingTypeIDName
MemberOfProhibitedC990SFP Secondary Cluster: Tainted Input to Command
Nature: MemberOf
Mapping: Prohibited
Type: Category
ID: 990
Name: SFP Secondary Cluster: Tainted Input to Command
▼Background Detail

▼Common Consequences
ScopeLikelihoodImpactNote
OtherN/AOther
N/A
Scope: Other
Likelihood: N/A
Impact: Other
Note:
N/A
▼Potential Mitigations
▼Modes Of Introduction
Phase: Implementation
Note:

REALIZATION: This weakness is caused during implementation of an architectural security tactic.

▼Applicable Platforms
Languages
Class: Not Language-Specific(Undetermined Prevalence)
Technology
Class: Not Technology-Specific(Undetermined Prevalence)
Operating System
Class: Not OS-Specific(Undetermined Prevalence)
Architecture
Class: Not Architecture-Specific(Undetermined Prevalence)
▼Demonstrative Examples
▼Observed Examples
ReferenceDescription
▼Affected Resources
    ▼Functional Areas
      ▼Weakness Ordinalities
      OrdinalityDescription
      ▼Detection Methods
      ▼Vulnerability Mapping Notes
      Usage:Discouraged
      Reason:Abstraction
      Rationale:

      This CWE entry is extremely high-level, a Pillar.

      Comments:

      Consider children or descendants of this entry instead.

      Suggestions:
      ▼Notes
      Maintenance

      Concepts such as validation, data transformation, and neutralization are being refined, so relationships between CWE-20 and other entries such as CWE-707 may change in future versions, along with an update to the Vulnerability Theory document.

      N/A

      ▼Taxonomy Mappings
      Taxonomy NameEntry IDFitEntry Name
      ▼Related Attack Patterns
      IDName
      CAPEC-250
      XML Injection
      CAPEC-276
      Inter-component Protocol Manipulation
      CAPEC-277
      Data Interchange Protocol Manipulation
      CAPEC-278
      Web Services Protocol Manipulation
      CAPEC-279
      SOAP Manipulation
      CAPEC-3
      Using Leading 'Ghost' Character Sequences to Bypass Input Filters
      CAPEC-43
      Exploiting Multiple Input Interpretation Layers
      CAPEC-468
      Generic Cross-Browser Cross-Domain Theft
      CAPEC-52
      Embedding NULL Bytes
      CAPEC-53
      Postfix, Null Terminate, and Backslash
      CAPEC-64
      Using Slashes and URL Encoding Combined to Bypass Validation Logic
      CAPEC-7
      Blind SQL Injection
      CAPEC-78
      Using Escaped Slashes in Alternate Encoding
      CAPEC-79
      Using Slashes in Alternate Encoding
      CAPEC-83
      XPath Injection
      CAPEC-84
      XQuery Injection
      ID: CAPEC-250
      Name: XML Injection
      ID: CAPEC-276
      Name: Inter-component Protocol Manipulation
      ID: CAPEC-277
      Name: Data Interchange Protocol Manipulation
      ID: CAPEC-278
      Name: Web Services Protocol Manipulation
      ID: CAPEC-279
      Name: SOAP Manipulation
      ID: CAPEC-3
      Name: Using Leading 'Ghost' Character Sequences to Bypass Input Filters
      ID: CAPEC-43
      Name: Exploiting Multiple Input Interpretation Layers
      ID: CAPEC-468
      Name: Generic Cross-Browser Cross-Domain Theft
      ID: CAPEC-52
      Name: Embedding NULL Bytes
      ID: CAPEC-53
      Name: Postfix, Null Terminate, and Backslash
      ID: CAPEC-64
      Name: Using Slashes and URL Encoding Combined to Bypass Validation Logic
      ID: CAPEC-7
      Name: Blind SQL Injection
      ID: CAPEC-78
      Name: Using Escaped Slashes in Alternate Encoding
      ID: CAPEC-79
      Name: Using Slashes in Alternate Encoding
      ID: CAPEC-83
      Name: XPath Injection
      ID: CAPEC-84
      Name: XQuery Injection
      ▼References
      Details not found