PillarDraft

CWE-691Insufficient Control Flow Management

Category: other

Description

The code does not sufficiently manage its control flow during execution, creating conditions in which the control flow can be modified in unexpected ways.

Common consequences· 1

  • Other — Alter Execution Logic

Related CAPEC attack patterns· 1

CAPEC-29

References

  1. https://cwe.mitre.org/data/definitions/691.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternLeveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditionscapec-29100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Incorrect Control Flow Scoping
CWE
Excessive Use of Unconditional Branching
CWE
Incorrect Provision of Specified Functionality
CWE
Inaccurate Source Code Comments
CWE
Unchecked Error Condition
CWE
Use of Same Variable for Multiple Purposes
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.