CWE-222 安全相关信息的截断

Truncation of Security-relevant Information

结构: Simple

Abstraction: Base

状态: Draft

被利用可能性: unkown


The application truncates the display, recording, or processing of security-relevant information in a way that can obscure the source or nature of an attack.


  • cwe_Nature: ChildOf cwe_CWE_ID: 221 cwe_View_ID: 1000 cwe_Ordinal: Primary

  • cwe_Nature: ChildOf cwe_CWE_ID: 221 cwe_View_ID: 699 cwe_Ordinal: Primary


Language: {'cwe_Class': 'Language-Independent', 'cwe_Prevalence': 'Undetermined'}


范围 影响 注释
Non-Repudiation Hide Activities The source of an attack will be difficult or impossible to determine. This can allow attacks to the system to continue without notice.


标识 说明 链接
CVE-2005-0585 Web browser truncates long sub-domains or paths, facilitating phishing.
CVE-2004-2032 Bypass URL filter via a long URL with a large number of trailing hex-encoded space characters.
CVE-2003-0412 Does not log complete URI of a long request (truncation).


映射的分类名 ImNode ID Fit Mapped Node Name
PLOVER Truncation of Security-relevant Information