Read Time:20 Second
Description
A class has a cloneable() method that is not declared final, which allows an object to be created without calling the constructor. This can cause the object to be in an unexpected state.
Modes of Introduction:
– Implementation
Related Weaknesses
Consequences
Integrity, Other: Unexpected State, Varies by Context
Potential Mitigations
Phase: Implementation
Description:
Make the cloneable() method final.