CWE-1073 – Non-SQL Invokable Control Element with Excessive Number of Data Resource Accesses

Read Time:16 Second

Description

The software contains a client with a function or method that contains a large number of data accesses/queries that are sent through a data manager, i.e., does not use efficient database capabilities.

Modes of Introduction:

 

 

Related Weaknesses

CWE-405

 

Consequences

Other: Reduce Performance

 

Potential Mitigations

CVE References