Category-878: CERT C++ Secure Coding Section 10 - Environment (ENV)
ID: 878
Status: Incomplete
Summary
Weaknesses in this category are related to rules in the Environment (ENV) section of the CERT C++ Secure Coding Standard. Since not all rules map to specific weaknesses, this category may be incomplete.
Membership
ID | NAME |
---|---|
CWE-119 | 内存缓冲区边界内操作的限制不恰当 |
CWE-426 | 不可信的搜索路径 |
CWE-462 | 在关联列表中具有重复Key |
CWE-705 | 控制流范围控制不正确 |
CWE-78 | OS命令中使用的特殊元素转义处理不恰当(OS命令注入) |
CWE-807 | 在安全决策中依赖未经信任的输入 |
CWE-88 | 参数注入或修改 |
References
文章来源于互联网:scap中文网
- 左青龙
- 微信扫一扫
- 右白虎
- 微信扫一扫
评论