diff --git a/ql/src/Security/CWE-352/ConstantOauth2State.ql b/ql/src/Security/CWE-352/ConstantOauth2State.ql
index 2130ecc92b7..ea8ce5b4875 100644
--- a/ql/src/Security/CWE-352/ConstantOauth2State.ql
+++ b/ql/src/Security/CWE-352/ConstantOauth2State.ql
@@ -4,6 +4,7 @@
  *              susceptible to CSRF attacks.
  * @kind path-problem
  * @problem.severity error
+ * @precision high
  * @id go/constant-oauth2-state
  * @tags security
  *       external/cwe/cwe-352