CWE - CWE-247: DEPRECATED: Reliance on DNS Lookups in a Security Decision (4.20)

Weakness ID: 247

Vulnerability Mapping: PROHIBITED This CWE ID must not be used to map to real-world vulnerabilities
Abstraction: Base Base - a weakness that is still mostly independent of a resource or technology, but with sufficient details to provide specific methods for detection and prevention. Base level weaknesses typically describe issues in terms of 2 or 3 of the following dimensions: behavior, property, technology, language, and resource.

View customized information:

For users who are interested in more notional aspects of a weakness. Example: educators, technical writers, and project/program managers. For users who are concerned with the practical application and details about the nature of a weakness and how to prevent it from happening. Example: tool developers, security researchers, pen-testers, incident response analysts. For users who are mapping an issue to CWE/CAPEC IDs, i.e., finding the most appropriate CWE for a specific issue (e.g., a CVE record). Example: tool developers, security researchers. For users who wish to see all available information for the CWE/CAPEC entry. For users who want to customize what details are displayed.

Description

This entry has been deprecated because it was a duplicate of CWE-350. All content has been transferred to CWE-350.

Vulnerability Mapping Notes

Usage	PROHIBITED (this CWE ID must not be used to map to real-world vulnerabilities)
Reason	Deprecated
Rationale	This CWE has been deprecated.
Comments	See description for suggestions for other CWE IDs to use.

Content History

Submissions
Submission Date	Submitter	Organization
2006-07-19 (CWE Draft 3, 2006-07-19)	7 Pernicious Kingdoms
2006-07-19 (CWE Draft 3, 2006-07-19)
Modifications
Modification Date	Modifier	Organization
2023-06-29 (CWE 4.12, 2023-06-29)	CWE Content Team	MITRE
2023-06-29 (CWE 4.12, 2023-06-29)	updated Mapping_Notes
2021-07-20 (CWE 4.5, 2021-07-20)	CWE Content Team	MITRE
2021-07-20 (CWE 4.5, 2021-07-20)	updated Name, References
2021-03-15 (CWE 4.4, 2021-03-15)	CWE Content Team	MITRE
2021-03-15 (CWE 4.4, 2021-03-15)	updated Taxonomy_Mappings
2020-02-24 (CWE 4.0, 2020-02-24)	CWE Content Team	MITRE
2020-02-24 (CWE 4.0, 2020-02-24)	updated References
2014-07-30 (CWE 2.8, 2014-07-31)	CWE Content Team	MITRE
2014-07-30 (CWE 2.8, 2014-07-31)	updated Taxonomy_Mappings
2013-07-17 (CWE 2.5, 2013-07-17)	CWE Content Team	MITRE
2013-07-17 (CWE 2.5, 2013-07-17)	updated Applicable_Platforms, Common_Consequences, Demonstrative_Examples, Description, Name, Other_Notes, Potential_Mitigations, References, Related_Attack_Patterns, Relationships, Time_of_Introduction, Type
2013-06-23 (CWE 2.5, 2013-07-17)	CWE Content Team	MITRE
2013-06-23 (CWE 2.5, 2013-07-17)	CWE-247 and CWE-292 deprecated and merged into CWE-350 to address duplicates.
2012-05-11 (CWE 2.2, 2012-05-15)	CWE Content Team	MITRE
2012-05-11 (CWE 2.2, 2012-05-15)	updated Demonstrative_Examples, References, Relationships
2011-06-01 (CWE 1.13, 2011-06-01)	CWE Content Team	MITRE
2011-06-01 (CWE 1.13, 2011-06-01)	updated Common_Consequences
2010-09-27 (CWE 1.10, 2010-09-27)	CWE Content Team	MITRE
2010-09-27 (CWE 1.10, 2010-09-27)	updated Potential_Mitigations
2010-04-05 (CWE 1.8.1, 2010-04-05)	CWE Content Team	MITRE
2010-04-05 (CWE 1.8.1, 2010-04-05)	updated Related_Attack_Patterns
2010-02-16 (CWE 1.8, 2010-02-16)	CWE Content Team	MITRE
2010-02-16 (CWE 1.8, 2010-02-16)	updated Relationships
2009-07-27 (CWE 1.5, 2009-07-27)	CWE Content Team	MITRE
2009-07-27 (CWE 1.5, 2009-07-27)	updated Demonstrative_Examples
2009-05-27 (CWE 1.4, 2009-05-27)	CWE Content Team	MITRE
2009-05-27 (CWE 1.4, 2009-05-27)	updated Relationships, Taxonomy_Mappings
2008-09-08 (CWE 1.0, 2008-09-09)	CWE Content Team	MITRE
2008-09-08 (CWE 1.0, 2008-09-09)	updated Relationships, Other_Notes, Taxonomy_Mappings
2008-07-01 (CWE 1.0, 2008-09-09)	Eric Dalci	Cigital
2008-07-01 (CWE 1.0, 2008-09-09)	updated Time_of_Introduction
Previous Entry Names
Change Date	Previous Entry Name
2021-07-20	DEPRECATED (Duplicate): Reliance on DNS Lookups in a Security Decision
2013-07-17	Reliance on DNS Lookups in a Security Decision
2008-04-11	Often Misused: Authentication


	Site Map \| Terms of Use \| Manage Cookies \| Cookie Notice \| Privacy Policy \| Contact Us \| Use of the Common Weakness Enumeration (CWE™) and the associated references from this website are subject to the Terms of Use. CWE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and managed by the Homeland Security Systems Engineering and Development Institute (HSSEDI) which is operated by The MITRE Corporation (MITRE). Copyright © 2006–2026, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation.

Common Weakness Enumeration

CWE-247: DEPRECATED: Reliance on DNS Lookups in a Security Decision

Edit Custom Filter