CWE-73 – External Control of File Name or Path
Description The software allows user input to control or influence paths or file names that are used in filesystem operations. Modes of Introduction: - Architecture...
CWE-72 – Improper Handling of Apple HFS+ Alternate Data Stream Path
Description The software does not properly handle special paths that may identify the data or resource fork of a file on the HFS+ file system....
CWE-710 – Improper Adherence to Coding Standards
Description The software does not follow certain coding rules for development, which can lead to resultant weaknesses or increase the severity of the associated vulnerabilities....
CWE-71 – DEPRECATED: Apple ‘.DS_Store’
Description This entry has been deprecated as it represents a specific observed example of a UNIX Hard Link weakness type rather than its own individual...
CWE-708 – Incorrect Ownership Assignment
Description The software assigns an owner to a resource, but the owner is outside of the intended control sphere. This may allow the resource to...
CWE-707 – Improper Neutralization
Description The product does not ensure or incorrectly ensures that structured messages or data are well-formed and that certain security properties are met before being...
CWE-706 – Use of Incorrectly-Resolved Name or Reference
Description The software uses a name or reference to access a resource, but the name/reference resolves to a resource that is outside of the intended...
CWE-705 – Incorrect Control Flow Scoping
Description The software does not properly return control flow to the proper location after it has completed a task or detected an unusual condition. Modes...
CWE-704 – Incorrect Type Conversion or Cast
Description The software does not correctly convert an object, resource, or structure from one type to a different type. Modes of Introduction: - Architecture and...
CWE-703 – Improper Check or Handling of Exceptional Conditions
Description The software does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the software. Modes of Introduction: - Architecture...
