CWE-695: Use of Low-Level Functionality

Description

The product uses low-level functionality that is explicitly prohibited by the framework or specification under which the product is supposed to operate.

Submission Date :

Sept. 9, 2008, midnight

Modification Date :

2023-06-29 00:00:00+00:00

Organization :

MITRE
Extended Description

The use of low-level functionality can violate the specification in unexpected ways that effectively disable built-in protection mechanisms, introduce exploitable inconsistencies, or otherwise expose the functionality to attack.

Related Weaknesses

This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.

CWE-111: Direct Use of Unsafe JNI
Go to
CWE-245: J2EE Bad Practices: Direct Management of Connections
Go to
CWE-246: J2EE Bad Practices: Direct Use of Sockets
Go to
CWE-383: J2EE Bad Practices: Direct Use of Threads
Go to
CWE-573: Improper Following of Specification by Caller
Go to
CWE-574: EJB Bad Practices: Use of Synchronization Primitives
Go to
CWE-575: EJB Bad Practices: Use of AWT Swing
Go to
CWE-576: EJB Bad Practices: Use of Java I/O
Go to

Visit http://cwe.mitre.org/ for more details.

© cvefeed.io
Latest DB Update: Nov. 21, 2024 12:31