VYPR

CWE-480

Use of Incorrect Operator

BaseDraftLikelihood: Low

Description

The product accidentally uses the wrong operator, which changes the logic in security-relevant ways.

These types of errors are generally the result of a typo by the programmer.

Hierarchy (View 1000)

CVEs mapped to this weakness (3)

  • CVE-2026-4748HigApr 1, 2026
    risk 0.49cvss 7.5epss 0.00

    A regression in the way hashes were calculated caused rules containing the address range syntax (x.x.x.x - y.y.y.y) that only differ in the address range(s) involved to be silently dropped as duplicates. Only the first of such rules is actually loaded into pf. Ranges expressed…

  • CVE-2026-44722May 14, 2026
    risk 0.00cvss epss 0.00

    ### Impact A Python operator precedence bug in pyzipper/zipfile_aes.py caused the AE-2 format to never be automatically selected during encryption, regardless of file size or compression type. As a result, all encrypted entries are written in AE-1 format unless AE-2 is…

  • CVE-2021-3116Jan 11, 2021
    risk 0.00cvss epss 0.02

    before_upstream_connection in AuthPlugin in http/proxy/auth.py in proxy.py before 2.3.1 accepts incorrect Proxy-Authorization header data because of a boolean confusion (and versus or).