Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CWE CATEGORY:Comprehensive Categorization: Resource Control
Category ID:1415
Vulnerability Mapping:Prohibited
Status:Incomplete
DetailsContent HistoryObserved CVE ExamplesReports
▼Summary

Weaknesses in this category are related to resource control.

▼Membership
NatureMappingTypeIDName
MemberOfProhibitedV1400Comprehensive Categorization for Software Assurance Trends
HasMemberAllowedB1104Use of Unmaintained Third Party Components
HasMemberAllowedB1249Application-Level Admin Tool with Inconsistent View of Underlying Operating System
HasMemberAllowedB1251Mirrored Regions with Different Values
HasMemberAllowedB1277Firmware Not Updateable
HasMemberAllowedB1310Missing Ability to Patch ROM Code
HasMemberAllowedV1321Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
HasMemberAllowedB1329Reliance on Component That is Not Updateable
HasMemberAllowedB385Covert Timing Channel
HasMemberAllowedB470Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
HasMemberAllowedV473PHP External Variable Modification
HasMemberAllowedB502Deserialization of Untrusted Data
HasMemberAllowed-with-ReviewC514Covert Channel
HasMemberAllowedB515Covert Storage Channel
HasMemberAllowed-with-ReviewC672Operation on a Resource after Expiration or Release
HasMemberAllowedB826Premature Release of Resource During Expected Lifetime
HasMemberAllowedB910Use of Expired File Descriptor
HasMemberAllowedB915Improperly Controlled Modification of Dynamically-Determined Object Attributes
Nature: MemberOf
Mapping: Prohibited
Type: View
ID: 1400
Name: Comprehensive Categorization for Software Assurance Trends
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 1104
Name: Use of Unmaintained Third Party Components
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 1249
Name: Application-Level Admin Tool with Inconsistent View of Underlying Operating System
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 1251
Name: Mirrored Regions with Different Values
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 1277
Name: Firmware Not Updateable
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 1310
Name: Missing Ability to Patch ROM Code
Nature: HasMember
Mapping: Allowed
Type: Variant
ID: 1321
Name: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 1329
Name: Reliance on Component That is Not Updateable
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 385
Name: Covert Timing Channel
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 470
Name: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
Nature: HasMember
Mapping: Allowed
Type: Variant
ID: 473
Name: PHP External Variable Modification
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 502
Name: Deserialization of Untrusted Data
Nature: HasMember
Mapping: Allowed-with-Review
Type: Class
ID: 514
Name: Covert Channel
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 515
Name: Covert Storage Channel
Nature: HasMember
Mapping: Allowed-with-Review
Type: Class
ID: 672
Name: Operation on a Resource after Expiration or Release
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 826
Name: Premature Release of Resource During Expected Lifetime
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 910
Name: Use of Expired File Descriptor
Nature: HasMember
Mapping: Allowed
Type: Base
ID: 915
Name: Improperly Controlled Modification of Dynamically-Determined Object Attributes
▼Vulnerability Mapping Notes
Usage:Prohibited
Reason:
Rationale:

This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves [REF-1330].

Comments:

See member weaknesses of this category.

▼Notes
▼Taxonomy Mappings
Taxonomy NameEntry IDFitEntry Name
▼References
Reference ID: REF-1330
Title: CVE --> CWE Mapping Guidance - Quick Tips
Version: v4.15
Author: MITRE
Publication:
Publisher:
Edition:
URL:https://cwe.mitre.org/documents/cwe_usage/quick_tips.html
URL Date:
Day:25
Month:03
Year:2021
Details not found