Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-693 (保护机制失效) — Vulnerability Class 224

224 vulnerabilities classified as CWE-693 (保护机制失效). AI Chinese analysis included.

CWE-693 represents a critical vulnerability where software fails to implement or correctly utilize necessary security controls, leaving systems exposed to directed attacks. This weakness manifests in two primary forms: missing mechanisms, where no defense exists for a specific threat vector, and insufficient mechanisms, where existing safeguards are inadequate or improperly configured. Attackers typically exploit these gaps by bypassing authentication, escalating privileges, or accessing sensitive data that should have been restricted. To mitigate this risk, developers must conduct rigorous threat modeling to identify all potential attack surfaces and ensure comprehensive security controls are in place. Regular code reviews and automated security testing help verify that protection mechanisms function as intended. By adopting a defense-in-depth strategy and validating that every security feature is both present and robust, organizations can significantly reduce the likelihood of exploitation and maintain the integrity of their applications.

MITRE CWE Description
The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product. This weakness covers three distinct situations. A "missing" protection mechanism occurs when the application does not define any mechanism against a certain class of attack. An "insufficient" protection mechanism might provide some defenses - for example, against the most common attacks - but it does not protect against everything that is intended. Finally, an "ignored" mechanism occurs when a mechanism is available and in active use within the product, but the developer has not applied it in some code path.
Common Consequences (1)
Access ControlBypass Protection Mechanism
CVE IDTitleCVSSSeverityPublished
CVE-2020-3315 Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability — Cisco Firepower Threat Defense Software 5.3 -2020-05-06
CVE-2020-7277 McAfee processes not protected — McAfee Endpoint Security (ENS) 6.8 Medium2020-04-15
CVE-2020-10598 碧迪医疗 Pyxis Anesthesia (PAS) ES System 安全漏洞 — Pyxis MedStation ES System 6.8 -2020-04-01
CVE-2020-10887 TP-LINK Archer A7 AC1750 安全漏洞 — Archer A7 9.8 -2020-03-25
CVE-2020-6977 多款GE产品安全漏洞 — GE Ultrasound Products 6.8 -2020-02-20
CVE-2019-13924 Siemens Scalance X-200 输入验证错误漏洞 — SCALANCE S602 9.1 -2020-02-11
CVE-2019-19278 Siemens SINAMICS PERFECT HARMONY GH180 竞争条件问题漏洞 — SINAMICS PERFECT HARMONY GH180 Drives MLFB 6SR32..-.....-.... MLFB 6SR4...-.....-.... MLFB 6SR5...-.....-.... With option A30 (HMIs 12 inches or larger) 6.8 -2020-01-16
CVE-2019-13535 Medtronic Valleylab FT10 and LS10 Protection Mechanism Failure — Valleylab FT10 Energy Platform (VLFT10GEN) 4.6 Medium2019-11-08
CVE-2019-12696 Cisco Firepower System Software Detection Engine RTF and RAR Malware and File Policy Bypass Vulnerabilities — Cisco FireSIGHT System Software 7.5 -2019-10-02
CVE-2019-12697 Cisco Firepower System Software Detection Engine RTF and RAR Malware and File Policy Bypass Vulnerabilities — Cisco FireSIGHT System Software 7.5 -2019-10-02
CVE-2019-1975 Cisco HyperFlex Software Cross-Frame Scripting Vulnerability — Cisco HyperFlex HX-Series 6.1 -2019-09-18
CVE-2019-13516 OSIsoft PI 跨站请求伪造漏洞 — OSIsoft PI Web API 8.8 -2019-08-15
CVE-2019-1970 Cisco Firepower Threat Defense Software File Policy Bypass Vulnerability — Cisco Firepower Threat Defense Software 7.5 -2019-08-08
CVE-2017-6261 NVIDIA’s Vibrante Linux version 1.1, 2.0, and 2.2 contains a vulnerability in the user space driver in which protection mechanisms are insufficient, may lead to denial of service or information disclosure — NVIDIA Vibrante Linux 7.1 -2019-06-05
CVE-2019-1833 Cisco Firepower Threat Defense Software SSL/TLS Policy Bypass Vulnerability — Cisco Firepower Threat Defense Software 5.8 -2019-05-16
CVE-2019-1832 Cisco Firepower Threat Defense Software Detection Engine Policy Bypass Vulnerability — Cisco Firepower Threat Defense Software 7.5 -2019-05-16
CVE-2019-3586 McAfee Endpoint Security firewall not always acting on GTI lookup results — McAfee Endpoint Security (ENS) 4.7 -2019-05-15
CVE-2019-5024 Capsule Technologies SmartLinx Neuron 输入验证错误漏洞 — Capsule Technologies SmartLinx Neuron 2 7.6 -2019-04-11
CVE-2018-20251 WinRAR 路径遍历漏洞 — WinRAR 5.5 -2019-02-05
CVE-2019-1669 Cisco Firepower Threat Defense Software Packet Inspection and Enforcement Bypass Vulnerability — Cisco Firepower Threat Defense Software 8.6 -2019-01-24
CVE-2018-11459 多款Siemens产品安全漏洞 — SINUMERIK 808D V4.7, SINUMERIK 808D V4.8, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8 7.8 -2018-12-12
CVE-2018-11460 多款Siemens产品安全漏洞 — SINUMERIK 808D V4.7, SINUMERIK 808D V4.8, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8 7.8 -2018-12-12
CVE-2018-15423 Cisco HyperFlex UI Clickjacking Vulnerability — Cisco HyperFlex HX-Series 4.7 -2018-10-05
CVE-2018-14280 Foxit Reader和PhantomPDF 输入验证漏洞 — Foxit Reader 8.8 -2018-07-31
CVE-2018-14281 Foxit Reader和PhantomPDF 输入验证漏洞 — Foxit Reader 8.8 -2018-07-31
CVE-2018-0383 Cisco FireSIGHT System Software检测引擎安全漏洞 — Cisco FireSIGHT unknown 8.6 -2018-07-16
CVE-2018-0384 Cisco FireSIGHT System Software检测引擎安全漏洞 — Cisco FireSIGHT unknown 5.8 -2018-07-16
CVE-2018-10631 Medtronic N'Vision Clinician Programmer Protection Mechanism Failure — 8840 N’Vision Clinician Programmer 6.3 Medium2018-07-13
CVE-2017-3197 GIGABYTE BRIX UEFI firmware fails to securely implement BIOS write protection — GB-BSi7H-6500 9.1 -2018-07-09
CVE-2018-0333 Cisco FireSIGHT System Software 安全特征问题漏洞 — Cisco FireSIGHT unknown 5.8 -2018-06-07

Vulnerabilities classified as CWE-693 (保护机制失效) represent 224 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.