Back to CWE Lookup

CWE-287: Improper Authentication

ClassDraftExploit Likelihood: High
🏆 #12 in CWE Top 25 20241
View on MITRE

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Technical Details

Structure
Simple

Applicable To

Languages
Not Language-Specific
Platforms

🏆 CWE Top 25 Historical Ranking

2023:#13
Score: 6.39
1,042 CVEs
2024:#12↑1
Score: 15.15
1,117 CVEs
Trend:Worsening (moved down 1 ranks)

Additional Resources

CWE-287: Improper Authentication | #12 in CWE Top 25 2024 | CWE Lookup | Inventive HQ