CWE-675 – Multiple Operations on Resource in Single-Operation Context
Description The product performs the same operation on a resource two or more times, when the operation should only be applied once. Modes of Introduction:...
CWE-676 – Use of Potentially Dangerous Function
Description The program invokes a potentially dangerous function that could introduce a vulnerability if it is used incorrectly, but the function can also be used...
CWE-680 – Integer Overflow to Buffer Overflow
Description The product performs a calculation to determine how much memory to allocate, but an integer overflow can occur that causes less memory to be...
CWE-681 – Incorrect Conversion between Numeric Types
Description When converting from one data type to another, such as long to integer, data can be omitted or translated in a way that produces...
CWE-682 – Incorrect Calculation
Description The software performs a calculation that generates incorrect or unintended results that are later used in security-critical decisions or resource management. When software performs...
CWE-683 – Function Call With Incorrect Order of Arguments
Description The software calls a function, procedure, or routine, but the caller specifies the arguments in an incorrect order, leading to resultant weaknesses. While this...
CWE-684 – Incorrect Provision of Specified Functionality
Description The code does not function according to its published specifications, potentially leading to incorrect usage. When providing functionality to an external party, it is...
CWE-685 – Function Call With Incorrect Number of Arguments
Description The software calls a function, procedure, or routine, but the caller specifies too many arguments, or too few arguments, which may lead to undefined...
CWE-686 – Function Call With Incorrect Argument Type
Description The software calls a function, procedure, or routine, but the caller specifies an argument that is the wrong data type, which may lead to...
CWE-687 – Function Call With Incorrectly Specified Argument Value
Description The software calls a function, procedure, or routine, but the caller specifies an argument that contains the wrong value, which may lead to resultant...