CWE-304

BaseDraft

View on MITRE

Missing Critical Step in Authentication

The product implements an authentication technique, but it skips a step that weakens the technique.

25 linked vulnerabilities

2 related weaknesses

Extended Description

Authentication techniques should follow the algorithms that define them exactly, otherwise authentication can be bypassed or more easily subjected to brute force attacks.

Access Control

Integrity

Confidentiality

Bypass Protection Mechanism

Gain Privileges or Assume Identity

Read Application Data

Execute Unauthorized Code or Commands

This weakness can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or allowing attackers to execute arbitrary code.

Automated Static Analysis

Effectiveness: High

Automated static analysis, commonly referred to as Static Application Security Testing (SAST), can find some instances of this weakness by analyzing source code (or binary/compiled code) without having to execute it. Typically, this is done by building a model of data flow and control flow, then searching for potentially-vulnerable patterns that connect "sources" (origins of input) with "sinks" (destinations where the data interacts with external components, a lower layer such as the OS, etc.)

Modes of Introduction

Implementation

Related Weaknesses

CWE-303ChildOf CWE-573ChildOf

Example CVEs (2)

CVE-2004-2163

Shared secret not verified in a RADIUS response packet, allowing authentication bypass by spoofing server replies.

CVE-2005-3327

Chain: Authentication bypass by skipping the first startup step as required by the protocol.

External Links

MITRE CWE Database

CWE-304: Missing Critical Step in Authentication | Mondoo Vulnerability Intelligence