Back to CWE list
CWE-437
Incomplete Model of Endpoint Features
Base
Incomplete
Description
A product acts as an intermediary or monitor between two or more endpoints, but it does not have a complete model of an endpoint's features, behaviors, or state, potentially causing the product to perform incorrect actions based on this incomplete model.
Parent Weaknesses (ChildOf)
Common Consequences
Scope
Integrity
Other
Impact
Unexpected State, Varies by Context
CVE-2024-55629network-based IDS does not model how TCP endpoints handle TCP urgent data, allowing attackers to bypass detection
Applicable Platforms
Not Language-Specific
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now