CWE-408

Incorrect Behavior Order: Early Amplification

The product allows an entity to perform a legitimate but expensive operation before authentication or authorization has taken place.

No mitigation information available for this CWE.

No CAPEC attack patterns related to this CWE.

Back to CWE stats page