CWE-230

Improper Handling of Missing Values

Variant

Draft

Description

The product does not handle or incorrectly handles when a parameter, field, or argument name is specified, but the associated value is missing, i.e. it is empty, blank, or null.

Parent Weaknesses (ChildOf)

CWE-229: Improper Handling of Values...

Common Consequences

Scope

Integrity

Impact

Unexpected State

CVE-2002-0422

Blank Host header triggers resultant infoleak.

CVE-2000-1006

Blank "charset" attribute in MIME header triggers crash.

CVE-2004-1504

Blank parameter causes external error infoleak.

CVE-2005-2053

Blank parameter causes external error infoleak.

Applicable Platforms

Not Language-Specific

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CWE-230

Improper Handling of Missing Values

Description

Relationships

Common Consequences

Related CVEs

Applicable Platforms