CVEbaza.plCWE DictionaryCWE-173
Common Weakness Enumeration

CWE-173

Improper Handling of Alternate Encoding

Category: VariantCVE: 5
Description

The product does not properly handle when an input uses an alternate encoding that is valid for the control sphere to which the input is being sent.

CVE vulnerabilities with CWE-173 (5)
3.5
CVSS
LOW
CVE-2024-54158

In JetBrains YouTrack before 2024.3.52635 potential spoofing attack was possible via lack of Punycode encoding

pub. 2024-12-04
3.3
CVSS
LOW
CVE-2023-26303

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input.

pub. 2023-02-23
3.3
CVSS
LOW
CVE-2023-26302

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.

pub. 2023-02-22
Information
ID: CWE-173
Type: Variant
Vulnerabilities: 5
MITRE CWE ↗
← CWE Dictionary