BaseDraft

CWE-628Function Call with Incorrectly Specified Arguments

Category: other

Description

The product calls a function, procedure, or routine with arguments that are not correctly specified, leading to always-incorrect behavior and resultant weaknesses.

Common consequences· 1

  • Other / Access Control — Quality Degradation, Gain Privileges or Assume Identity
    This weakness can cause unintended behavior and can lead to additional weaknesses such as allowing an attacker to gain unintended access to system resources.

Potential mitigations· 2

  • [Build and Compilation]Once found, these issues are easy to fix. Use code inspection tools and relevant compiler features to identify potential violations. Pay special attention to code that is not likely to be exercised heavily during QA.
  • [Architecture and Design]Make sure your API's are stable before you use them in production code.

References

  1. https://cwe.mitre.org/data/definitions/628.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Function Call With Incorrectly Specified Argument Value
CWE
Function Call With Incorrect Variable or Reference as Argument
CWE
Function Call With Incorrect Number of Arguments
CWE
Function Call With Incorrect Argument Type
CWE
Function Call With Incorrect Order of Arguments
CWE
Incorrect Check of Function Return Value
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.