CWE-SANS-Top-25/Risky-resource-management/CWE-754

From aldeid
Jump to navigation Jump to search

CWE-754: Improper Check for Unusual or Exceptional Conditions

Description

Testing is certainly the most critical phase in the development process. Although, the worst case scenario is often forgotten. But an attacker could discover this exception!

Read more on errors and exceptions exploitation.

Risk measurement

Weakness Prevalence High
Remediation Cost Low
Attack Frequency Often
Consequences Denial of service, Security bypass, Data loss, Code execution
Ease of Detection Moderate
Attacker Awareness High

Comments

Talk:CWE-SANS-Top-25/Risky-resource-management/CWE-754