threat
engine
.sh
Back
·
··:··
Home
/
CWE
/
Improper Handling of Unicode Encoding
Weakness
Improper Handling of Unicode Encoding
CWE-176 · Variant · Draft
The product does not properly handle when an input contains Unicode encoding.
△
Weakness Relationships
Where this weakness sits in the CWE hierarchy. Walk up to broader classes or down to more specific variants.
Parent of this (broader)
ChildOf
CWE-172 · Encoding Error
◆
Attack Patterns (CAPEC)
1
How adversaries exploit this weakness, per MITRE CAPEC.
CAPEC-71
Using Unicode Encoding to Bypass Validation Logic
⚠
CVEs With This Weakness
24
A sample of the 24 CVEs tagged with this weakness.
CVE
CVE-2026-7040
CVE
CVE-2026-44288
CVE
CVE-2026-4116
CVE
CVE-2026-4114
CVE
CVE-2026-35375
CVE
CVE-2026-35373
CVE
CVE-2026-35346
CVE
CVE-2026-25480
CVE
CVE-2026-23950
CVE
CVE-2026-20202
CVE
CVE-2025-59547
CVE
CVE-2025-55129
External lookups - second-class, for what we don’t hold ourselves
MITRE CWE
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin