CWE-1426
Improper Validation of Generative AI Output
The product invokes a generative AI/ML component whose behaviors and outputs cannot be directly controlled, but the product does not validate or insufficiently validates the outputs to ensure that they align with the intended security, content, or privacy policy.
Official CWE-1426 definition at MITREImpactr finds and proves weaknesses like CWE-1426 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist