CWE-223

Base Abstraction Level
Pillar — Highest-level weakness category
Class — Abstract, language-independent
Base — Specific enough to detect
Variant — Tied to specific technology
Compound — Requires multiple weaknesses
Draft MITRE CWE Status
Stable — Fully reviewed and complete
Draft — Under development, may change
Incomplete — Partially defined by MITRE
Deprecated — No longer recommended
Obsolete — Replaced by another CWE
Omission of Security-relevant Information

Description

The product does not record or display information that would be important for identifying the source or nature of an attack, or determining if an action is safe.

Consequences

Non-Repudiation — Hide Activities

The source of an attack will be difficult or impossible to determine. This can allow attacks to the system to continue without notice.