CWE · MITRE source
CWE-358Improperly Implemented Security Check for Standard
The product does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (1)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
CA-2 | Control Assessments | CA | Assessments identify and document improperly implemented security checks, allowing fixes that reduce exploitation of flawed checks. |
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2018-1270 | 7.4 | 9.8 | 0.8995 | 2018-04-06 |
CVE-2024-7965 KEV | 5.2 | 8.8 | 0.2376 | 2024-08-21 |
CVE-2018-1275 | 4.2 | 9.8 | 0.3806 | 2018-04-11 |
CVE-2017-15663 | 3.3 | 7.5 | 0.2921 | 2018-01-10 |
CVE-2019-6742 | 3.1 | 9.8 | 0.1921 | 2019-06-03 |
CVE-2017-15665 | 2.7 | 7.5 | 0.1945 | 2018-01-10 |
CVE-2017-15662 | 2.6 | 7.5 | 0.1843 | 2018-01-10 |
CVE-2017-15664 | 2.6 | 7.5 | 0.1843 | 2018-01-10 |
CVE-2018-0268 | 2.6 | 10.0 | 0.0964 | 2018-05-17 |
CVE-2016-10229 | 2.0 | 9.8 | 0.0093 | 2017-04-04 |
CVE-2022-25152 | 2.0 | 9.9 | 0.0045 | 2022-06-09 |
CVE-2023-3266 | 2.0 | 9.8 | 0.0008 | 2023-08-14 |
CVE-2023-4501 | 2.0 | 9.8 | 0.0017 | 2023-09-12 |
CVE-2025-62583 | 2.0 | 9.8 | 0.0007 | 2025-10-16 |
CVE-2025-66603 | 2.0 | 9.8 | 0.0007 | 2026-02-09 |
CVE-2019-3894 | 1.8 | 8.8 | 0.0116 | 2019-05-03 |
CVE-2016-10834 | 1.8 | 8.8 | 0.0049 | 2019-08-01 |
CVE-2023-39403 | 1.8 | 9.1 | 0.0007 | 2023-08-13 |
CVE-2024-2174 | 1.8 | 8.8 | 0.0019 | 2024-03-06 |
CVE-2024-6101 | 1.8 | 8.8 | 0.0047 | 2024-06-20 |
CVE-2024-6772 | 1.8 | 8.8 | 0.0060 | 2024-07-16 |
CVE-2025-3069 | 1.8 | 8.8 | 0.0021 | 2025-04-02 |
CVE-2025-69234 | 1.8 | 9.1 | 0.0006 | 2025-12-30 |
CVE-2026-1486 | 1.8 | 8.8 | 0.0003 | 2026-02-09 |
CVE-2026-29103 | 1.8 | 9.1 | 0.0035 | 2026-03-19 |