CWE-480 – Use of Incorrect Operator | Common Weakness Enumeration (CWE)

Overview

CWE-480 (Use of Incorrect Operator) documents a weakness type used across vulnerability databases and security assessments. Use the sections below for definition, context, and mapped CVEs.

Security impact: Security impact: Depends on product and context; use CVE records, severity scores, and MITRE guidance to prioritize.

Description

The product accidentally uses the wrong operator, which changes the logic in security-relevant ways.

Applicable platforms

Kind	Name	Class	Prevalence	OS / CPE
language	C	—	Sometimes	—
language	C++	—	Sometimes	—
language	Perl	—	Sometimes	—
language	—	Not Language-Specific	Undetermined	—

Related CVEs in this database

These CVEs are mapped to this weakness in this database and kept for traceability and search.

CVE	Published	Summary
CVE-2026-4748	2026-04-01	A regression in the way hashes were calculated caused rules containing the address range syntax (x.x.x.x - y.y.y.y) that only differ in the address range(s) involved to be silently dropped as duplicat…
CVE-2025-52985	2025-07-11	A Use of Incorrect Operator vulnerability in the Routing Engine firewall of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to bypass security restrictions. When …
CVE-2024-35190	2024-05-17	Asterisk is an open source private branch exchange and telephony toolkit. After upgrade to 18.23.0, ALL unauthorized SIP requests are identified as PJSIP Endpoint of local asterisk server. This vulner…
CVE-2022-1947	2022-05-31	Use of Incorrect Operator in GitHub repository polonel/trudesk prior to 1.2.3.

Previous names

Using the Wrong Operator (2008-04-11)

Content submission

Name: CLASP
Date: 2006-07-19
Version: Draft 3

Content modifications

Date	Name	Version	Importance	Comment
2008-07-01	Eric Dalci	1.0	—	updated Time_of_Introduction
2008-09-08	CWE Content Team	1.0	—	updated Applicable_Platforms, Relationships, Other_Notes, Taxonomy_Mappings
2008-10-14	CWE Content Team	1.0.1	—	updated Relationships
2008-11-24	CWE Content Team	1.1	—	updated Relationships, Taxonomy_Mappings
2011-06-01	CWE Content Team	1.13	—	updated Common_Consequences, Relationships, Taxonomy_Mappings
2011-09-13	CWE Content Team	2.1	—	updated Relationships, Taxonomy_Mappings
2012-05-11	CWE Content Team	2.2	—	updated Common_Consequences, References, Relationships, Taxonomy_Mappings
2012-10-30	CWE Content Team	2.3	—	updated Demonstrative_Examples, Potential_Mitigations
2014-06-23	CWE Content Team	2.7	—	updated Applicable_Platforms, Description, Detection_Factors, Other_Notes
2014-07-30	CWE Content Team	2.8	—	updated Relationships
2017-11-08	CWE Content Team	3.0	—	updated Demonstrative_Examples, Taxonomy_Mappings
2019-01-03	CWE Content Team	3.2	—	updated Relationships
2020-02-24	CWE Content Team	4.0	—	updated References, Relationships, Taxonomy_Mappings
2020-08-20	CWE Content Team	4.2	—	updated Relationships
2021-03-15	CWE Content Team	4.4	—	updated Demonstrative_Examples, Relationships
2023-01-31	CWE Content Team	4.10	—	updated Description, Observed_Examples
2023-04-27	CWE Content Team	4.11	—	updated Relationships
2023-06-29	CWE Content Team	4.12	—	updated Mapping_Notes
2023-10-26	CWE Content Team	4.13	—	updated Observed_Examples
2024-02-29	CWE Content Team	4.14	—	updated Demonstrative_Examples, References
2025-12-11	CWE Content Team	4.19	—	updated Weakness_Ordinalities

Contributions

Type	Name	Date	Comment
Content	Chen Chen, Rahul Kande, Jeyavijayan Rajendran	2023-11-07	suggested demonstrative example
Content	Shaza Zeitouni, Mohamadreza Rostami, Ahmad-Reza Sadeghi	2023-11-07	suggested demonstrative example