CWE-544
Missing Standardized Error Handling Mechanism
BaseDraft
Description
The product does not use a standardized method for handling errors throughout the code, which might introduce inconsistent error handling and resultant weaknesses.
If the product handles error messages individually, on a one-by-one basis, this is likely to result in inconsistent error handling. The causes of errors may be lost. Also, detailed information about the causes of an error may be unintentionally returned to the user.
Hierarchy (View 1000)
Parents
Children
none
CVEs mapped to this weakness (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-47971 | — | Med | 0.42 | 6.5 | 0.00 | Oct 7, 2024 | Improper error handling in firmware of some SSD DC Products may allow an attacker to enable denial of service. | |
| CVE-2023-6599 | 0.00 | — | 0.00 | Dec 8, 2023 | Missing Standardized Error Handling Mechanism in GitHub repository microweber/microweber prior to 2.0. | |||
| CVE-2020-10800 | — | 0.00 | — | 0.01 | Mar 21, 2020 | lix through 15.8.7 allows man-in-the-middle attackers to execute arbitrary code by modifying the HTTP client-server data stream so that the Location header is associated with attacker-controlled executable content in the postDownload field. |
- risk 0.42cvss 6.5epss 0.00
Improper error handling in firmware of some SSD DC Products may allow an attacker to enable denial of service.
- CVE-2023-6599Dec 8, 2023risk 0.00cvss —epss 0.00
Missing Standardized Error Handling Mechanism in GitHub repository microweber/microweber prior to 2.0.
- CVE-2020-10800Mar 21, 2020risk 0.00cvss —epss 0.01
lix through 15.8.7 allows man-in-the-middle attackers to execute arbitrary code by modifying the HTTP client-server data stream so that the Location header is associated with attacker-controlled executable content in the postDownload field.