CWE-710

Pillar Abstraction Level
Pillar — Highest-level weakness category
Class — Abstract, language-independent
Base — Specific enough to detect
Variant — Tied to specific technology
Compound — Requires multiple weaknesses
Incomplete MITRE CWE Status
Stable — Fully reviewed and complete
Draft — Under development, may change
Incomplete — Partially defined by MITRE
Deprecated — No longer recommended
Obsolete — Replaced by another CWE
Improper Adherence to Coding Standards

Description

The product does not follow certain coding rules for development, which can lead to resultant weaknesses or increase the severity of the associated vulnerabilities.

Consequences

Other — Other

Mitigations

Phase: Policy

Select and require coding standards. Ensure that they include security concerns.

Phase: Implementation

Closely follow coding standards, possibly enforcing them upon checkin of the code into a source control system or with periodic analyses.

Detection

Automated Static Analysis

Automated tools can detect violations of many code standards.