BaseIncomplete

CWE-1054Invocation of a Control Element at an Unnecessarily Deep Horizontal Layer

Category: other

Description

The code at one architectural layer invokes code that resides at a deeper layer than the adjacent layer, i.e., the invocation skips at least one layer, and the invoked code is not part of a vertical utility layer that can be referenced from any horizontal layer.

Common consequences· 1

  • Other — Reduce Maintainability
    This issue makes it more difficult to understand and maintain the product, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.

References

  1. https://cwe.mitre.org/data/definitions/1054.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Excessively Deep Nesting
CWE
Invokable Control Element with Large Number of Outward Calls
CWE
Use of Same Invokable Control Element in Multiple Architectural Layers
CWE
Invokable Control Element with Excessive File or Data Access Operations
CWE
Insufficient Control Flow Management
CWE
Non-SQL Invokable Control Element with Excessive Number of Data Resource Accesses
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.