CWE-657: Violation of Secure Design Principles
CWE版本: 4.18
更新日期: 2025-09-09
弱点描述
The product violates well-established principles for secure design.
扩展描述
This can introduce resultant weaknesses or make it easier for developers to introduce related weaknesses during implementation. Because code is centered around design, it can be resource-intensive to fix design problems.
常见后果
影响范围: Other
技术影响: Other
观察示例
参考: CVE-2019-6260
Baseboard Management Controller (BMC) device implements Advanced High-performance Bus (AHB) bridges that do not require authentication for arbitrary read and write access to the BMC's physical address space from the host, and possibly the network [REF-1138].
参考: CVE-2007-5277
The failure of connection attempts in a web browser resets DNS pin restrictions. An attacker can then bypass the same origin policy by rebinding a domain name to a different IP address. This was an attempt to "fail functional."
参考: CVE-2006-7142
Hard-coded cryptographic key stored in executable program.
参考: CVE-2007-0408
Server does not properly validate client certificates when reusing cached connections.
引入模式
| 阶段 | 说明 |
|---|---|
| Architecture and Design | - |
| Implementation | - |
| Operation | - |
分类映射
| 分类名称 | 条目ID | 条目名称 | 映射适配度 |
|---|---|---|---|
| ISA/IEC 62443 | Part 4-1 | Req SD-3 | - |
| ISA/IEC 62443 | Part 4-1 | Req SD-4 | - |
| ISA/IEC 62443 | Part 4-1 | Req SI-1 | - |