CWE-1112
Incomplete Documentation of Program Execution
Incomplete
2019-01-03
00h00 +00:00
00h00 +00:00
2024-02-29
00h00 +00:00
00h00 +00:00
Notifications for a CWE
Stay informed of any changes for a specific CWE.
Name: Incomplete Documentation of Program Execution
The document does not fully define all mechanisms that are used
to control or influence how product-specific programs are
executed.
CWE Description
This includes environmental variables, configuration files, registry keys, command-line switches or options, or system settings.
General Informations
Vulnerability Mapping Notes
Justification : This entry is primarily a quality issue with no direct security implications.Comment : Look for weaknesses that are focused specifically on insecure behaviors that have more direct security implications.
References
REF-963
Providing a Framework for Effective Software Quality AssessmentRobert A. Martin, Lawrence H. Shafer.
https://www.researchgate.net/publication/285403022_PROVIDING_A_FRAMEWORK_FOR_EFFECTIVE_SOFTWARE_QUALITY_MEASUREMENT_MAKING_A_SCIENCE_OF_RISK_ASSESSMENT
Submission
| Name | Organization | Date | Date release | Version |
|---|---|---|---|---|
| CWE Content Team | MITRE | 3.2 |
Modifications
| Name | Organization | Date | Comment |
|---|---|---|---|
| CWE Content Team | MITRE | updated Relationships | |
| CWE Content Team | MITRE | updated Relationships | |
| CWE Content Team | MITRE | updated Mapping_Notes | |
| CWE Content Team | MITRE | updated Mapping_Notes |
2025©
tesweb SA
