CWE-439: Behavioral Change in New Version or Environment
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
A's behavior or functionality changes with a new version of A, or a new environment, which is not known (or manageable) by B.
常见后果
影响范围: Other
技术影响: Quality Degradation Varies by Context
观察示例
参考: CVE-2002-1976
Linux kernel 2.2 and above allow promiscuous mode using a different method than previous versions, and ifconfig is not aware of the new method (alternate path property).
参考: CVE-2005-1711
Product uses defunct method from another product that does not return an error code and allows detection avoidance.
参考: CVE-2003-0411
chain: Code was ported from a case-sensitive Unix platform to a case-insensitive Windows platform where filetype handlers treat .jsp and .JSP as different extensions. JSP source code may be read because .JSP defaults to the filetype "text".
引入模式
| 阶段 | 说明 |
|---|---|
| Architecture and Design | - |
| Implementation | - |
适用平台
编程语言
分类映射
| 分类名称 | 条目ID | 条目名称 | 映射适配度 |
|---|---|---|---|
| PLOVER | - | CHANGE Behavioral Change | - |