CWE-549 - Missing Password Field Masking

Abstraction:Base
Structure:Simple
Status:Draft

Release Date:2006-07-19
Latest Modification Date:2023-06-29

Weakness Name

Missing Password Field Masking

Description

The product does not mask passwords during entry, increasing the potential for attackers to observe and capture passwords.

Common Consequences

Scope: Access Control

Impact: Bypass Protection Mechanism

Related Weaknesses