BaseIncomplete

CWE-1088Synchronous Access of Remote Resource without Timeout

Category: logic

Description

The code has a synchronous call to a remote resource, but there is no timeout for the call, or the timeout is set to infinite.

Common consequences· 1

  • Other — Reduce Reliability
    This issue can prevent the product from running reliably, since an outage for the remote resource can cause the product to hang. If the relevant code is reachable by an attacker, then this reliability problem might introduce a vulnerability.

References

  1. https://cwe.mitre.org/data/definitions/1088.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Missing Synchronization
CWE
Insufficient Control Flow Management
CWE
Invokable Control Element in Multi-Thread Context with non-Final Static Storable or Member Element
CWE
Incorrect Synchronization
CWE
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE
Unchecked Error Condition
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.