CWE-356: Product UI does not Warn User of Unsafe Actions

What is Product UI does not Warn User of Unsafe Actions?

• Overview: CWE-356 refers to a security vulnerability where a product's user interface fails to alert users about potentially unsafe actions before they are executed. This lack of warning can allow malicious entities to manipulate users into performing actions that compromise their system's security.

• Exploitation Methods:

Attackers can exploit this vulnerability by creating scenarios where users unknowingly perform harmful actions, such as downloading and executing malicious files.
Common attack patterns include phishing attempts where users are misled to click on unsafe links or execute harmful scripts without any warning from the application.

• Security Impact:

Direct consequences include the unintentional execution of malicious code, leading to system compromise or data loss.
Potential cascading effects can involve further spread of malware, unauthorized access to sensitive information, and exploitation of other vulnerabilities.
Business impact can be significant, including reputational damage, financial losses, and potential legal liabilities from breaches.

• Prevention Guidelines:

Implement user interface checks that trigger warnings for actions that could lead to unsafe outcomes, such as executing files from untrusted sources.
Adopt security best practices by ensuring user actions are verified, and confirmations are required for potentially dangerous operations.
Utilize recommended tools and frameworks that support secure UI design, such as libraries that provide built-in security prompts and validations.

Corgea can automatically detect and fix Product UI does not Warn User of Unsafe Actions in your codebase. Try Corgea free today.

Technical Details

Likelihood of Exploit: Not specified

Affected Languages: Not Language-Specific

Affected Technologies: Not specified

Vulnerable Code Example

JavaScript Example

// This JavaScript code provides a button to delete a user account, but does not warn the user 
// before performing this potentially destructive action. This can lead to accidental deletions.
document.getElementById('deleteButton').addEventListener('click', function() {
    deleteUserAccount(); // Directly calls the function to delete the user account without any warning
});

function deleteUserAccount() {
    // Code to delete the user account
    console.log('User account deleted');
}

In this vulnerable example, the code directly deletes the user account when the delete button is clicked, without any warning or confirmation. This lack of user interaction can lead to accidental deletions, which can be especially problematic if the action is irreversible.

How to fix Product UI does not Warn User of Unsafe Actions?

To fix this vulnerability, the user interface should provide a clear warning or confirmation dialog to the user before performing the unsafe action. This gives the user an opportunity to reconsider their decision, thereby reducing the risk of accidental or malicious data loss. Implementing a confirmation dialog is a common practice for preventing unintended actions, especially for operations that are irreversible or have significant consequences.

Steps to Fix:

Implement a confirmation dialog that appears when the user clicks the delete button.
The dialog should clearly state the consequences of the action.
Ensure that the action is only executed if the user explicitly confirms.

Fixed Code Example

// The fixed code now includes a confirmation dialog to warn the user before deleting their account.
document.getElementById('deleteButton').addEventListener('click', function() {
    // Display a confirmation dialog to the user
    const userConfirmed = confirm('Are you sure you want to delete your account? This action cannot be undone.');
    if (userConfirmed) { // Only delete the account if the user confirms
        deleteUserAccount();
    }
});

function deleteUserAccount() {
    // Code to delete the user account
    console.log('User account deleted');
}

In the fixed example, we have added a confirmation dialog using the confirm() method. When the user clicks the delete button, a dialog is shown with a warning message. The account is only deleted if the user clicks "OK" in the confirmation dialog, thereby protecting against accidental deletions. This approach ensures that users are aware of the potential consequences of their actions before proceeding, adhering to best practices for user interface design.