CWE-675: Multiple Operations on Resource in Single-Operation Context

Class Draft Simple

CWE版本: 4.18

更新日期: 2025-09-09

弱点描述

The product performs the same operation on a resource two or more times, when the operation should only be applied once.

常见后果

影响范围: Other

技术影响: Other

观察示例

参考: CVE-2009-0935

Attacker provides invalid address to a memory-reading function, causing a mutex to be unlocked twice

参考: CVE-2019-13351

file descriptor double close can cause the wrong file to be associated with a file descriptor.

参考: CVE-2004-1939

XSS protection mechanism attempts to remove "/" that could be used to close tags, but it can be bypassed using double encoded slashes (%252F)

引入模式

阶段 说明
Implementation -

适用平台

编程语言
Not Language-Specific (Undetermined)
关键信息

CWE ID: CWE-675

抽象级别: Class

结构: Simple

状态: Draft

相关弱点
ChildOf CWE-573

Improper Following of Specification by Caller

Class
PeerOf CWE-586

Explicit Call to Finalize()

Base
PeerOf CWE-102

Struts: Duplicate Validation Forms

Variant
返回列表