Improper Authentication

Improper authentication occurs when identity checks fail or can be bypassed, allowing unauthorized access.

#appsec#cwe

Last updated: 2025-09-02T00:00:00.000Z

Evidence

CWE CWE-287 Normative evidence
cwe.mitre.org

Mappings

CWE-287

More context

Weak checks, default credentials, or flawed flows commonly lead to improper authentication.