CWE-528

Exposure of Core Dump File to an Unauthorized Control Sphere

AI Translation Available

The product generates a core dump file in a directory, archive, or other resource that is stored, transferred, or otherwise made accessible to unauthorized actors.

Status

draft

Abstraction

variant

Affected Platforms

Technical Details

AI Translation

Common Consequences

confidentiality

Impacts

read application data read files or directories

Detection Methods

automated static analysis

Potential Mitigations

Phases:

system configuration

Descriptions:

• Protect the core dump files from unauthorized access.

AI Generated Translation

Common Consequences

riservatezza

Impacts

leggere dati applicazione leggere file o directory

Detection Methods

analisi statica automatizzata

Potential Mitigations

Phases:

configurazione sistema

Descriptions:

• Proteggi i file di core dump da accessi non autorizzati.

CWE-528

Common Consequences

Impacts

Detection Methods

Potential Mitigations

Common Consequences

Impacts

Detection Methods

Potential Mitigations

Iscriviti alla newsletter