BaseIncomplete

CWE-253Incorrect Check of Function Return Value

Category: other

Description

The product incorrectly checks a return value from a function, which prevents it from detecting errors or exceptional conditions. Important and common functions will return some value about the success of its actions. This will alert the program whether or not to handle any errors caused by that function.

Common consequences· 1

  • Availability / Integrity — Unexpected State, DoS: Crash, Exit, or Restart
    An unexpected return value could place the system in a state that could lead to a crash or other unintended behaviors.

Potential mitigations· 3

  • [Architecture and Design]Use a language or compiler that uses exceptions and requires the catching of those exceptions.
  • [Implementation]Properly check all functions which return a value.
  • [Implementation]When designing any function make sure you return a value or throw an exception in case of an error.

References

  1. https://cwe.mitre.org/data/definitions/253.html

(incoming)1

TypeTargetConfidenceTier
VulnerabilityCVE-2026-35091cve-2026-350910%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Unexpected Status Code or Return Value
CWE
Function Call with Incorrectly Specified Arguments
CWE
Incorrect Control Flow Scoping
CWE
Function Call With Incorrectly Specified Argument Value
CWE
Improper Handling of Exceptional Conditions
CWE
Unchecked Return Value
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.