Cyber Resilience

CWE · MITRE source

CWE-684Incorrect Provision of Specified Functionality

Abstraction: Class · CVEs in our corpus: 27

The code does not function according to its published specifications, potentially leading to incorrect usage.

When providing functionality to an external party, it is important that the product behaves in accordance with the details specified. When requirements of nuances are not documented, the functionality may produce unintended behaviors for the caller, possibly leading to an exploitable state.

Last updated: 04 July 2026 00:28 UTC

Cumulative inbound coverage

How completely the frameworks we cross-walk collectively cover this — the verdict is the strongest single mapping (overlapping partials are not summed); breadth shows the corroboration behind it.

Collective: partial · 1 mapping(s) from 1 framework(s): STIG rhel 9 1 (partial)

See the full cumulative-coverage rollup →

NIST 800-53 r5 controls that address this weakness (1)AI

Control Title Family Why it addresses this CWE
SI-6Security and Privacy Function VerificationSIPeriodic checks confirm that specified security and privacy functions are actually provided and operating.

Top CVEs of this weakness type, ranked by Risk Priority

CVE Risk CVSS EPSS Published
CVE-2023-248457.09.10.00582023-08-08
CVE-2024-64257.09.10.00542024-07-01
CVE-2024-503577.09.80.00562024-11-29
CVE-2023-42585.58.60.00472023-09-25
CVE-2023-53635.57.50.03332023-10-25
CVE-2024-203175.57.40.00242024-09-11
CVE-2025-47227 UPD5.57.50.01962025-07-05
CVE-2025-583255.58.20.00282025-10-14
CVE-2025-663845.58.20.00322025-11-28
CVE-2026-307915.57.50.00242026-03-05
CVE-2026-35985.57.50.00232026-03-05
CVE-2026-344785.57.50.00832026-04-10
CVE-2026-422555.57.20.00212026-04-26
CVE-2020-110543.53.50.01282020-05-07
CVE-2022-237283.56.10.00102022-01-21
CVE-2023-51583.56.50.00202023-09-25
CVE-2024-65023.55.70.00352024-08-22
CVE-2024-50053.54.30.00372024-10-11
CVE-2025-54567 UPD3.54.20.00242025-07-25
CVE-2026-406843.55.90.00362026-04-30
CVE-2026-406853.56.50.00322026-04-30
CVE-2024-89741.52.60.00282024-09-26
CVE-2025-54568 UPD1.53.70.00332025-07-25
CVE-2025-551741.53.20.00122025-11-26
CVE-2026-353791.53.30.00152026-04-22