CWE-1061: Insufficient Encapsulation
Class
Incomplete
Simple
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The product does not sufficiently hide the internal representation and implementation details of data or methods, which might allow external components or modules to modify data unexpectedly, invoke unexpected functionality, or introduce dependencies that the programmer did not intend.
观察示例
参考: CVE-2010-3860
variables declared public allow remote read of system properties such as user name and home directory.