ByteOS Network

CWE-1042:Static Member Data Element outside of a Singleton Class Element

Weakness ID:1042

Version:v4.17

Weakness Name:Static Member Data Element outside of a Singleton Class Element

Vulnerability Mapping:Prohibited

Abstraction:Variant

Structure:Simple

Status:Incomplete

Details Content History Observed CVE Examples Reports

▼Description

The code contains a member element that is declared as static (but not final), in which its parent class element is not a singleton class - that is, a class element that can be used only once in the 'to' association of a Create action.

▼Extended Description

This issue can make the product perform more slowly. If the relevant code is reachable by an attacker, then this performance problem might introduce a vulnerability.

▼Relationships

Relevant to the view"Research Concepts - (1000)"

Nature	Mapping	Type	ID	Name
ChildOf	Allowed-with-Review	C	1176	Inefficient CPU Computation

Nature: ChildOf

Mapping: Allowed-with-Review

Type: Class

ID: 1176

Name: Inefficient CPU Computation

▼Memberships

Nature	Mapping	Type	ID	Name
MemberOf	Prohibited	C	1132	CISQ Quality Measures (2016) - Performance Efficiency
MemberOf	Prohibited	C	1309	CISQ Quality Measures - Efficiency
MemberOf	Prohibited	C	1416	Comprehensive Categorization: Resource Lifecycle Management

Nature: MemberOf

Mapping: Prohibited

Type:Category

ID: 1132

Name: CISQ Quality Measures (2016) - Performance Efficiency

Nature: MemberOf

Mapping: Prohibited

Type:Category

ID: 1309

Name: CISQ Quality Measures - Efficiency

Nature: MemberOf

Mapping: Prohibited

Type:Category

ID: 1416

Name: Comprehensive Categorization: Resource Lifecycle Management

▼Tags

Nature	Mapping	Type	ID	Name
MemberOf	Prohibited	BS	BOSS-313	Reduce Performance (impact)

Nature: MemberOf

Mapping: Prohibited

Type:BOSSView

ID: BOSS-313

Name: Reduce Performance (impact)

▼Relevant To View

Relevant to the view"CISQ Quality Measures (2020) - (1305)"

Nature	Mapping	Type	ID	Name
MemberOf	Prohibited	C	1309	CISQ Quality Measures - Efficiency

Nature: MemberOf

Mapping: Prohibited

Type: Category

ID: 1309

Name: CISQ Quality Measures - Efficiency

▼Common Consequences

Scope	Likelihood	Impact	Note
Other	N/A	Reduce Performance	N/A

Scope: Other

Likelihood: N/A

Impact: Reduce Performance

Note:

N/A

▼Weakness Ordinalities

Ordinality	Description
Indirect	N/A

Ordinality: Indirect

Description:

N/A

▼Vulnerability Mapping Notes

Usage:Prohibited

Reason:Other

Rationale:

This entry is primarily a quality issue with no direct security implications.

Comments:

Look for weaknesses that are focused specifically on insecure behaviors that have more direct security implications.

▼Taxonomy Mappings

Taxonomy Name	Entry ID	Fit	Entry Name
OMG ASCPEM	ASCPEM-PRF-3	N/A	N/A

Taxonomy Name: OMG ASCPEM

Entry ID: ASCPEM-PRF-3

Fit: N/A

Entry Name: N/A

▼References

Reference ID: REF-959

Title: Automated Source Code Performance Efficiency Measure (ASCPEM)

Author: Object Management Group (OMG)

Section: ASCPEM-PRF-3

Publication:

URL:https://www.omg.org/spec/ASCPEM/

URL Date:2023-04-07

Day:N/A

Month:01

Year:2016