BaseIncomplete

CWE-1188Initialization of a Resource with an Insecure Default

Category: config

Description

The product initializes or sets a resource with a default that is intended to be changed by the product's installer, administrator, or maintainer, but the default is not secure.

Common consequences· 1

  • Other — Varies by Context
    The impact of insecure defaults varies widely depending on the functionality that the product controls.

Related CAPEC attack patterns· 1

CAPEC-665

References

  1. https://cwe.mitre.org/data/definitions/1188.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternExploitation of Thunderbolt Protection Flawscapec-665100%live

Compliance frameworks addressing this (incoming)2

TypeTargetConfidenceTier
ComplianceControldora-art8100%live
ComplianceControlpci_dss_v4-r2100%live

(incoming)42

TypeTargetConfidenceTier
VulnerabilityCVE-2025-13357cve-2025-133570%live
VulnerabilityCVE-2025-1863cve-2025-18630%live
VulnerabilityCVE-2025-1960cve-2025-19600%live
VulnerabilityCVE-2025-24288cve-2025-242880%live
VulnerabilityCVE-2025-25271cve-2025-252710%live
VulnerabilityCVE-2025-31930cve-2025-319300%live
VulnerabilityCVE-2025-36222cve-2025-362220%live
VulnerabilityCVE-2025-41438cve-2025-414380%live
VulnerabilityCVE-2025-41672cve-2025-416720%live
VulnerabilityCVE-2025-47945cve-2025-479450%live
VulnerabilityTeleMessage TM SGNL Initialization of a Resource with an Insecure Default Vulnerabilitycve-2025-489270%live
VulnerabilityCVE-2025-54127cve-2025-541270%live
VulnerabilityCVE-2025-56332cve-2025-563320%live
VulnerabilityCVE-2025-57295cve-2025-572950%live
VulnerabilityCVE-2025-61481cve-2025-614810%live
VulnerabilityCVE-2025-62877cve-2025-628770%live
VulnerabilityCVE-2025-66414cve-2025-664140%live
VulnerabilityCVE-2025-66416cve-2025-664160%live
VulnerabilityCVE-2025-69970cve-2025-699700%live
VulnerabilityCVE-2025-70998cve-2025-709980%live
VulnerabilityCVE-2026-24148cve-2026-241480%live
VulnerabilityCVE-2026-25894cve-2026-258940%live
VulnerabilityCVE-2026-2617cve-2026-26170%live
VulnerabilityCVE-2026-28205cve-2026-282050%live
VulnerabilityCVE-2026-28775cve-2026-287750%live
VulnerabilityCVE-2026-30805cve-2026-308050%live
VulnerabilityCVE-2026-31818cve-2026-318180%live
VulnerabilityCVE-2026-31957cve-2026-319570%live
VulnerabilityCVE-2026-32046cve-2026-320460%live
VulnerabilityCVE-2026-33037cve-2026-330370%live

Showing top 30 of 42 by confidence. Click any target to see the full neighbourhood.

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Incorrect Initialization of Resource
CWE
Improper Initialization
CWE
Insecure Default Variable Initialization
CWE
Missing Initialization of Resource
CWE
Use of Weak Credentials
CWE
Improperly Implemented Security Check for Standard
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.