BaseIncomplete

CWE-910Use of Expired File Descriptor

Category: other

Description

The product uses or accesses a file descriptor after it has been closed. After a file descriptor for a particular file or device has been released, it can be reused. The code might not write to the original file, since the reused file descriptor might reference a different file or device.

Common consequences· 2

  • Confidentiality — Read Files or Directories
    The program could read data from the wrong file.
  • Availability — DoS: Crash, Exit, or Restart
    Accessing a file descriptor that has been closed can cause a crash.

References

  1. https://cwe.mitre.org/data/definitions/910.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Missing Reference to Active File Descriptor or Handle
CWE
Missing Release of File Descriptor or Handle after Effective Lifetime
CWE
Allocation of File Descriptors or Handles Without Limits or Throttling
CWE
Expired Pointer Dereference
CWE
Exposure of File Descriptor to Unintended Control Sphere ('File Descriptor Leak')
CWE
Improper Resource Locking
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.