CWE-414 加锁检查缺失
Missing Lock Check
结构: Simple
Abstraction: Base
状态: Draft
被利用可能性: unkown
基本描述
A product does not check to see if a lock is present before performing sensitive operations on a resource.
相关缺陷
适用平台
Language: {'cwe_Class': 'Language-Independent', 'cwe_Prevalence': 'Undetermined'}
常见的影响
| 范围 | 影响 | 注释 |
|---|---|---|
| ['Integrity', 'Availability'] | ['Modify Application Data', 'DoS: Instability', 'DoS: Crash, Exit, or Restart'] |
可能的缓解方案
['Architecture and Design', 'Implementation']
策略:
Implement a reliable lock mechanism.
分析过的案例
| 标识 | 说明 | 链接 |
|---|---|---|
分类映射
| 映射的分类名 | ImNode ID | Fit | Mapped Node Name |
|---|---|---|---|
| PLOVER | Missing Lock Check | ||
| Software Fault Patterns | SFP19 | Missing Lock |
文章来源于互联网:scap中文网
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论