Cyber Resilience

CWE · MITRE source

CWE-475Undefined Behavior for Input to API

Abstraction: Base · CVEs in our corpus: 15

The behavior of this function is undefined unless its control parameter is set to a specific value.

Last updated: 04 July 2026 00:28 UTC

NIST 800-53 r5 controls that address this weakness (0)AI

Control Title Family Why it addresses this CWE
No NIST controls proposed yet.

Top CVEs of this weakness type, ranked by Risk Priority

CVE Risk CVSS EPSS Published
CVE-2020-79255.57.50.01662020-11-23
CVE-2024-203805.57.50.01102024-04-18
CVE-2024-105695.57.50.00612025-03-20
CVE-2025-47865 UPD5.57.50.01522025-06-17
CVE-2026-34379 UPD5.57.10.00282026-04-06
CVE-2026-42009 UPD5.57.50.01342026-05-18
CVE-2022-292073.55.50.00322022-05-20
CVE-2023-22533.56.50.00942023-06-06
CVE-2023-48743.54.30.00722023-09-09
CVE-2023-525333.55.30.00362024-04-08
CVE-2024-30993.55.40.00442024-06-06
CVE-2025-47866 UPD3.54.30.00242025-06-17
CVE-2026-216903.56.30.00192026-01-07
CVE-2026-8391 UPD3.55.30.00302026-05-12
CVE-2023-48751.52.20.00512023-09-09