CWE-1052
Excessive Use of Hard-Coded Literals in Initialization
Incomplete
2019-01-03 00:00 +00:00
2023-10-26 00:00 +00:00
Alerte pour un CWE
Stay informed of any changes for a specific CWE.
Excessive Use of Hard-Coded Literals in Initialization
The product initializes a data element using a hard-coded
literal that is not a simple integer or static constant element.
Extended Description
This issue makes it more difficult to modify or maintain the product, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.
Informations
Common Consequences
| Scope | Impact | Likelihood |
|---|---|---|
| Other | Reduce Maintainability |
Vulnerability Mapping Notes
Rationale : This CWE entry is at the Base level of abstraction, which is a preferred level of abstraction for mapping to the root causes of vulnerabilities.Comments : Carefully read both the name and description to ensure that this mapping is an appropriate fit. Do not try to 'force' a mapping to a lower-level Base/Variant simply to comply with this preferred level of abstraction.
References
REF-960
Automated Source Code Maintainability Measure (ASCMM)Object Management Group (OMG).
https://www.omg.org/spec/ASCMM/
Submission
| Name | Organization | Date | Date Release | Version |
|---|---|---|---|---|
| CWE Content Team | MITRE | 3.2 |
Modifications
| Name | Organization | Date | Comment |
|---|---|---|---|
| CWE Content Team | MITRE | updated Relationships | |
| CWE Content Team | MITRE | updated Relationships | |
| CWE Content Team | MITRE | updated Description | |
| CWE Content Team | MITRE | updated References, Relationships | |
| CWE Content Team | MITRE | updated Mapping_Notes | |
| CWE Content Team | MITRE | updated Relationships |
2024©
tesweb SA
