CWE · MITRE source
CWE-349Acceptance of Extraneous Untrusted Data With Trusted Data
The product, when processing trusted data, accepts any untrusted data that is also included with the trusted data, treating the untrusted data as if it were trusted.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2019-9535 | 2.2 | 9.8 | 0.0431 | 2019-10-09 |
CVE-2018-1131 | 1.8 | 8.8 | 0.0053 | 2018-05-15 |
CVE-2024-25638 | 1.8 | 8.9 | 0.0019 | 2024-07-22 |
CVE-2025-40776 | 1.7 | 8.6 | 0.0002 | 2025-07-16 |
CVE-2025-40778 | 1.7 | 8.6 | 0.0001 | 2025-10-22 |
CVE-2026-32162 | 1.7 | 8.4 | 0.0004 | 2026-04-14 |
CVE-2021-21374 | 1.6 | 8.1 | 0.0031 | 2021-03-26 |
CVE-2026-35641 | 1.6 | 7.8 | 0.0001 | 2026-04-10 |
CVE-2020-8023 | 1.5 | 7.7 | 0.0006 | 2020-09-01 |
CVE-2025-27415 | 1.5 | 7.5 | 0.0026 | 2025-03-19 |
CVE-2025-29816 | 1.5 | 7.5 | 0.0013 | 2025-04-08 |
CVE-2025-29842 | 1.5 | 7.5 | 0.0020 | 2025-05-13 |
CVE-2023-3749 | 1.4 | 7.1 | 0.0004 | 2023-08-03 |
CVE-2023-44317 | 1.4 | 7.2 | 0.0015 | 2023-11-14 |
CVE-2024-41924 | 1.4 | 7.2 | 0.0014 | 2024-07-30 |
CVE-2024-53848 | 1.4 | 7.1 | 0.0004 | 2024-11-29 |
CVE-2025-48804 | 1.4 | 6.8 | 0.0037 | 2025-07-08 |
CVE-2023-51655 | 1.3 | 6.3 | 0.0000 | 2023-12-21 |
CVE-2024-42483 | 1.3 | 6.5 | 0.0004 | 2024-09-12 |
CVE-2024-52555 | 1.3 | 6.3 | 0.0000 | 2024-11-15 |
CVE-2020-10751 | 1.2 | 6.1 | 0.0008 | 2020-05-26 |
CVE-2026-1642 | 1.2 | 5.9 | 0.0002 | 2026-02-04 |
CVE-2024-34083 | 1.1 | 5.4 | 0.0008 | 2024-05-18 |
CVE-2025-11703 | 1.1 | 5.3 | 0.0003 | 2025-10-18 |
CVE-2025-68269 | 1.1 | 5.4 | 0.0001 | 2025-12-16 |