CWE-628

Function Call with Incorrectly Specified Arguments

AI Translation Available

The product calls a function, procedure, or routine with arguments that are not correctly specified, leading to always-incorrect behavior and resultant weaknesses.

Status

draft

Abstraction

base

Affected Platforms

Extended Description

AI Translation

There are multiple ways in which this weakness can be introduced, including:

- the wrong variable or reference;

- an incorrect number of arguments;

- incorrect order of arguments;

- wrong type of arguments; or

- wrong value.

Technical Details

AI Translation

Common Consequences

other access control

Impacts

quality degradation gain privileges or assume identity

Detection Methods

other

Potential Mitigations

Phases:

build and compilation architecture and design

Descriptions:

• Make sure your API's are stable before you use them in production code.

• Once found, these issues are easy to fix. Use code inspection tools and relevant compiler features to identify potential violations. Pay special attention to code that is not likely to be exercised heavily during QA.

AI Generated Translation

Common Consequences

altro controllo degli accessi

Impacts

degradazione della qualità ottenere privilegi o assumere identità

Detection Methods

altro

Potential Mitigations

Phases:

compilazione e build architettura e design

Descriptions:

• Assicurati che le tue API siano stabili prima di utilizzarle nel codice di produzione.

• Una volta individuati, questi problemi sono facili da risolvere. Utilizzare strumenti di ispezione del codice e funzionalità del compilatore pertinenti per identificare potenziali violazioni. Prestare particolare attenzione al codice che probabilmente non verrà esercitato intensamente durante il QA.

CWE-628

Common Consequences

Impacts

Detection Methods

Potential Mitigations

Common Consequences

Impacts

Detection Methods

Potential Mitigations

Iscriviti alla newsletter