CWE · MITRE source
CWE-1288Improper Validation of Consistency within Input
The product receives a complex input with multiple elements or fields that must be consistent with each other, but it does not validate or incorrectly validates that the input is actually consistent.
Some input data can be structured with multiple elements or fields that must be consistent with each other, e.g. a number-of-items field that is followed by the expected number of elements. When such complex inputs are inconsistent, attackers could trigger unexpected errors, cause incorrect actions to take place, or exploit latent vulnerabilities.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2022-39353 | 1.9 | 9.4 | 0.0103 | 2022-11-02 |
CVE-2024-25951 | 1.7 | 8.0 | 0.0093 | 2024-03-09 |
CVE-2021-41531 | 1.5 | 7.5 | 0.0035 | 2021-09-21 |
CVE-2023-6245 | 1.5 | 7.5 | 0.0013 | 2023-12-08 |
CVE-2024-31136 | 1.5 | 7.4 | 0.0000 | 2024-03-28 |
CVE-2024-39515 | 1.5 | 7.5 | 0.0028 | 2024-10-09 |
CVE-2022-50976 | 1.5 | 7.7 | 0.0001 | 2026-02-02 |
CVE-2023-32701 | 1.4 | 7.1 | 0.0009 | 2023-11-14 |
CVE-2024-12093 | 1.4 | 6.8 | 0.0006 | 2025-05-22 |
CVE-2024-27371 | 1.3 | 6.7 | 0.0006 | 2024-06-05 |
CVE-2024-27375 | 1.3 | 6.7 | 0.0006 | 2024-06-05 |
CVE-2024-8305 | 1.3 | 6.5 | 0.0029 | 2024-10-21 |
CVE-2024-5953 | 1.1 | 5.7 | 0.0012 | 2024-06-18 |
CVE-2025-10929 | 1.1 | 5.3 | 0.0010 | 2025-10-30 |
CVE-2023-1619 | 1.0 | 4.9 | 0.0023 | 2023-06-26 |
CVE-2023-1620 | 1.0 | 4.9 | 0.0019 | 2023-06-26 |
CVE-2025-2885 | 0.9 | 4.5 | 0.0026 | 2025-03-27 |
CVE-2025-46722 | 0.9 | 4.2 | 0.0023 | 2025-05-29 |
CVE-2024-31140 | 0.8 | 4.1 | 0.0001 | 2024-03-28 |
CVE-2025-9999 | 0.0 | 0.0 | 0.0003 | 2025-09-05 |