CWE-1044
Architecture with Number of Horizontal Layers Outside of Expected Range
Incomplete
2019-01-03 00:00 +00:00
2024-02-29 00:00 +00:00
Alerte pour un CWE
Stay informed of any changes for a specific CWE.
Architecture with Number of Horizontal Layers Outside of Expected Range
The product's architecture contains too many - or too few -
horizontal layers.
Extended Description
This issue makes it more difficult to maintain the product, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.
While the interpretation of "expected range" may vary for each product or developer, CISQ recommends a default minimum of 4 layers and maximum of 8 layers.
Informations
Modes Of Introduction
Architecture and DesignCommon Consequences
| Scope | Impact | Likelihood |
|---|---|---|
| Other | Reduce Maintainability |
Vulnerability Mapping Notes
Rationale : This entry is primarily a quality issue with no direct security implications.Comments : Look for weaknesses that are focused specifically on insecure behaviors that have more direct security implications.
References
REF-960
Automated Source Code Maintainability Measure (ASCMM)Object Management Group (OMG).
https://www.omg.org/spec/ASCMM/
Submission
| Name | Organization | Date | Date Release | Version |
|---|---|---|---|---|
| CWE Content Team | MITRE | 3.2 |
Modifications
| Name | Organization | Date | Comment |
|---|---|---|---|
| CWE Content Team | MITRE | updated Description | |
| CWE Content Team | MITRE | updated References, Relationships | |
| CWE Content Team | MITRE | updated Mapping_Notes | |
| CWE Content Team | MITRE | updated Mapping_Notes |
2024©
tesweb SA
