CWE-420Unprotected Alternate Channel

Abstraction: Base · CVEs in our corpus: 36

The product protects a primary channel, but it does not use the same level of protection for an alternate channel.

Last updated: 09 May 2026 03:25 UTC

NIST 800-53 r5 controls that address this weakness (3)AI

Control	Title	Family	Why it addresses this CWE
`AC-17`	Remote Access	AC	Usage restrictions and authorization for remote access protect against unprotected alternate channels.
`RA-6`	Technical Surveillance Countermeasures Survey	RA	TSCM surveys detect and neutralize unprotected alternate channels introduced by surveillance equipment or modifications.
`SC-41`	Port and I/O Device Access	SC	Removes or disables unprotected alternate I/O channels that could otherwise be used to bypass primary controls.

CVE	Risk	CVSS	EPSS	Published
`CVE-2023-20198` KEV	9.6	10.0	0.9398	2023-10-16
`CVE-2025-54309` KEV	8.5	9.0	0.7776	2025-07-18
`CVE-2025-13315`	6.9	9.8	0.8288	2025-11-19
`CVE-2024-10081`	6.4	10.0	0.7391	2024-11-06
`CVE-2020-8558`	2.3	5.4	0.2015	2020-07-27
`CVE-2025-52921`	2.0	9.9	0.0050	2025-06-23
`CVE-2023-4570`	1.8	8.8	0.0011	2023-10-05
`CVE-2025-1095`	1.8	8.8	0.0004	2025-04-08
`CVE-2025-54351`	1.8	8.9	0.0007	2025-08-03
`CVE-2025-8557`	1.8	8.8	0.0003	2025-09-11
`CVE-2025-62001`	1.8	8.8	0.0003	2025-12-18
`CVE-2026-40217`	1.8	8.8	0.0024	2026-04-10
`CVE-2023-31241`	1.7	8.6	0.0001	2023-05-22
`CVE-2024-8038`	1.6	7.9	0.0008	2024-10-02
`CVE-2025-53967`	1.6	8.0	0.0001	2025-10-08
`CVE-2025-67303`	1.6	7.5	0.0132	2026-01-05
`CVE-2025-41727`	1.6	7.8	0.0001	2026-01-27
`CVE-2023-28840`	1.5	7.5	0.0065	2023-04-04
`CVE-2023-7266`	1.5	7.5	0.0007	2024-12-28
`CVE-2025-59033`	1.5	7.4	0.0005	2025-09-08
`CVE-2023-28842`	1.4	6.8	0.0086	2023-04-04
`CVE-2023-52718`	1.3	6.4	0.0002	2024-12-28
`CVE-2026-43505`	1.3	6.5	0.0006	2026-05-01
`CVE-2024-4444`	1.1	5.3	0.0093	2024-05-14
`CVE-2024-6099`	1.1	5.3	0.0009	2024-07-02