CWE-1023
Incomplete Comparison with Missing Factors
The product performs a comparison between entities that must consider multiple factors or characteristics of each entity, but the comparison does not include one or more of these factors.
Mitigation
Phase: Testing
Description:
- Thoroughly test the comparison scheme before deploying code into production. Perform positive testing as well as negative testing.
No CAPEC attack patterns related to this CWE.