Home/CWE/Incorrect Comparison
Weakness

Incorrect Comparison

CWE-697 · Pillar · Incomplete

The product compares two entities in a security-relevant context, but the comparison is incorrect.

Extended description

This Pillar covers several possibilities: the comparison checks one factor incorrectly.

the comparison should consider multiple factors, but it does not check at least one of those factors at all.

the comparison checks the wrong factor.

Weakness Relationships

Where this weakness sits in the CWE hierarchy. Walk up to broader classes or down to more specific variants.
Children (more specific)
ParentOfCWE-1023 · Incomplete Comparison with Missing Factors
ParentOfCWE-1024 · Comparison of Incompatible Types
ParentOfCWE-1025 · Comparison Using Wrong Factors
ParentOfCWE-1039 · Inadequate Detection or Handling of Adversarial Input Perturbations in Automated Recognition Mechanism
ParentOfCWE-1077 · Floating Point Comparison with Incorrect Operator
ParentOfCWE-1254 · Incorrect Comparison Logic Granularity
ParentOfCWE-183 · Permissive List of Allowed Inputs
ParentOfCWE-185 · Incorrect Regular Expression
ParentOfCWE-581 · Object Model Violation: Just One of Equals and Hashcode Defined

Attack Patterns (CAPEC)

29
How adversaries exploit this weakness, per MITRE CAPEC.
CAPEC-10Buffer Overflow via Environment Variables
CAPEC-120Double Encoding
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-15Command Delimiters
CAPEC-182Flash Injection
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-267Leverage Alternate Encoding
CAPEC-3Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-41Using Meta-characters in E-mail Headers to Inject Malicious Payloads
CAPEC-43Exploiting Multiple Input Interpretation Layers
CAPEC-44Overflow Binary Resource File
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-52Embedding NULL Bytes
CAPEC-53Postfix, Null Terminate, and Backslash
CAPEC-6Argument Injection
CAPEC-64Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-67String Format Overflow in syslog()
CAPEC-7Blind SQL Injection
CAPEC-71Using Unicode Encoding to Bypass Validation Logic
CAPEC-73User-Controlled Filename
CAPEC-78Using Escaped Slashes in Alternate Encoding
CAPEC-79Using Slashes in Alternate Encoding
CAPEC-8Buffer Overflow in an API Call
CAPEC-80Using UTF-8 Encoding to Bypass Validation Logic
CAPEC-88OS Command Injection
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-92Forced Integer Overflow

CVEs With This Weakness

175
A sample of the 175 CVEs tagged with this weakness.
CVECVE-2026-44196
CVECVE-2026-35040
CVECVE-2026-34574
CVECVE-2026-34210
CVECVE-2026-32322
CVECVE-2026-26275
CVECVE-2026-21691
CVECVE-2025-9401
CVECVE-2025-54336
CVECVE-2025-48952
CVECVE-2025-47416
CVECVE-2025-4515

Nuclei Scanner Templates

1
Open-source Nuclei templates that detect this weakness class - an actionable scan-for-it pivot. Licensed under the ProjectDiscovery / Nuclei terms.
highSureTriggers - All-in-One Automation Platform ≤ 1.0.78 - Authentication Bypass
External lookups - second-class, for what we don’t hold ourselves
MITRE CWE
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin