CWE-224
Obscured Security-relevant Information by Alternate Name
Description
The product records security-relevant information according to an alternate name of the affected entity, instead of the canonical name.
Consequences
Non-Repudiation, Access Control
—
Hide Activities, Gain Privileges or Assume Identity