CWE-222

Truncation of Security-relevant Information

Base

Draft

Description

The product truncates the display, recording, or processing of security-relevant information in a way that can obscure the source or nature of an attack.

Parent Weaknesses (ChildOf)

CWE-221: Information Loss or Omission...

Common Consequences

Scope

Non-Repudiation

Impact

Hide Activities

CVE-2005-0585

Web browser truncates long sub-domains or paths, facilitating phishing.

CVE-2004-2032

Bypass URL filter via a long URL with a large number of trailing hex-encoded space characters.

CVE-2003-0412

application server does not log complete URI of a long request (truncation).

Applicable Platforms

Not Language-Specific

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CWE-222

Truncation of Security-relevant Information

Description

Relationships

Common Consequences

Related CVEs

Applicable Platforms