Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-696 (不正确的行为次序) — Vulnerability Class 25

25 vulnerabilities classified as CWE-696 (不正确的行为次序). AI Chinese analysis included.

CWE-696 represents a logical flaw where a software component executes related operations in an incorrect sequence, leading to unintended security vulnerabilities. This weakness typically arises when developers fail to recognize that the order of actions is critical for maintaining system integrity. Attackers exploit this by manipulating the timing or sequence of inputs to trigger race conditions, bypass authentication checks before validation occurs, or cause resource exhaustion before cleanup routines execute. For instance, checking permissions after opening a file handle allows unauthorized access to sensitive data. To prevent such errors, developers must rigorously map out dependency graphs for all critical workflows, ensuring that security controls, such as validation and authorization, are strictly enforced before any state-changing operations. Comprehensive code reviews and formal verification methods further help identify and correct these sequencing defects before deployment.

MITRE CWE Description
The product performs multiple related behaviors, but the behaviors are performed in the wrong order in ways that may produce resultant weaknesses.
Common Consequences (1)
IntegrityAlter Execution Logic
Examples (2)
The following code attempts to validate a given input path by checking it against an allowlist and then return the canonical path. In this specific case, the path is considered valid if it starts with the string "/safe_dir/".
String path = getInputPath(); if (path.startsWith("/safe_dir/")) { File f = new File(path); return f.getCanonicalPath(); }
Bad · Java
String path = getInputPath(); File f = new File(path); if (f.getCanonicalPath().startsWith("/safe_dir/")) { return f.getCanonicalPath(); }
Good · Java
This function prints the contents of a specified file requested by a user.
function printFile($username,$filename){ //read file into string $file = file_get_contents($filename); if ($file && isOwnerOf($username,$filename)){ echo $file; return true; } else{ echo 'You are not authorized to view this file'; } return false; }
Bad · PHP
CVE IDTitleCVSSSeverityPublished
CVE-2026-44600 Tor 安全漏洞 — Tor 3.7 Low2026-05-07
CVE-2026-43002 OpenStack Horizon 安全漏洞 — Horizon 5.3 Medium2026-05-05
CVE-2026-41254 Little CMS 安全漏洞 — little cms color engine 4.0 Medium2026-04-18
CVE-2026-35652 OpenClaw < 2026.3.22 - Unauthorized Action Execution via Callback Dispatch — OpenClaw 6.5 Medium2026-04-10
CVE-2026-40223 systemd 安全漏洞 — systemd 4.7 Medium2026-04-10
CVE-2026-35640 OpenClaw < 2026.3.25 - Denial of Service via Unauthenticated Webhook Request Parsing — OpenClaw 5.3 Medium2026-04-09
CVE-2026-35637 OpenClaw < 2026.3.22 - Premature Cite Expansion Before Authorization in Channel and DM — OpenClaw 7.3 High2026-04-09
CVE-2026-35636 OpenClaw 2026.3.11 < 2026.3.25 - Session Isolation Bypass via sessionId Resolution — OpenClaw 6.5 Medium2026-04-09
CVE-2026-35627 OpenClaw < 2026.3.22 - Unauthenticated Cryptographic Work in Nostr Inbound DM Handling — OpenClaw 6.5 Medium2026-04-09
CVE-2026-35386 OpenSSH 安全漏洞 — OpenSSH 3.6 Low2026-04-02
CVE-2026-33305 OpenEMR has Authorization Bypass in FaxSMS AppDispatch Constructor — openemr 5.4 Medium2026-03-19
CVE-2025-9904 Canon多款产品 安全漏洞 — Generic Plus PCL6 Printer Driver 5.3 Medium2025-09-29
CVE-2025-55114 BMC Control-M/Agent improper IP address filtering order — Control-M/Agent 5.3 Medium2025-09-16
CVE-2025-48965 Mbed TLS 安全漏洞 — mbedtls 4.0 Medium2025-07-20
CVE-2021-47688 WhiteBeam 安全漏洞 — WhiteBeam 5.7 Medium2025-06-23
CVE-2025-31485 GraphQL grant on a property might be cached with different objects — core 7.5 High2025-04-03
CVE-2025-0150 Zoom Workplace Apps for iOS - Incorrect Behavior Order — Zoom Workplace Apps for iOS 7.1 High2025-03-11
CVE-2023-52968 MariaDB 安全漏洞 — MariaDB 4.9 Medium2025-03-08
CVE-2024-35229 ZKsync Era evaluation order of Yul function arguments — era-compiler-solidity 5.3 Medium2024-05-27
CVE-2024-30389 Junos OS: EX4300 Series: Firewall filter not blocking egress traffic — Junos OS 5.8 Medium2024-04-12
CVE-2024-30410 Junos OS: EX4300 Series: Loopback filter not blocking traffic despite having discard term. — Junos 5.8 Medium2024-04-12
CVE-2023-23576 Gallagher Command Centre 安全漏洞 — Command Centre Server 4.3 Medium2023-12-18
CVE-2023-33224 SolarWinds Platform Incorrect Behavior Order Vulnerability — SolarWinds Platform 7.2 High2023-07-26
CVE-2021-22569 Denial of Service of protobuf-java parsing procedure — protobuf-java 7.5 High2022-01-07
CVE-2021-31379 Junos OS: MX Series: MPC 7/8/9/10/11 cards with MAP-E: PFE halts when an attacker sends malformed IPv4 or IPv6 traffic inside the MAP-E tunnel. — Junos OS 7.5 High2021-10-19

Vulnerabilities classified as CWE-696 (不正确的行为次序) represent 25 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.