[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247768

 
 

909

 
 

194555

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CWE
view XML

Files or Directories Accessible to External Parties

ID: 552Date: (C)2012-05-14   (M)2022-10-10
Type: weaknessStatus: DRAFT
Abstraction Type: Base





Description

Files or directories are accessible in the environment that should not be.

Applicable Platforms
None

Time Of Introduction

  • Implementation
  • Operation

Common Consequences

ScopeTechnical ImpactNotes
Confidentiality
Integrity
 		Read files or directories
Modify files or directories
 		 

Detection Methods
None

Potential Mitigations
None

Relationships

Related CWETypeViewChain
CWE-552 ChildOf CWE-895 Category CWE-888  

Demonstrative Examples
None

White Box Definitions
None

Black Box Definitions
None

Taxynomy Mappings

TaxynomyIdNameFit
OWASP Top Ten 2004 A10
 		Insecure Configuration Management
 		CWE_More_Specific
 
CERT C Secure Coding FIO15-C
 		Ensure that file operations are performed in a secure directory
 		 
CERT C++ Secure Coding FIO15-CPP
 		Ensure that file operations are performed in a secure directory
 		 

References:
None
CVE    87
CVE-2016-10829
CVE-2021-1361
CVE-2021-1256
CVE-2021-1434
...

© SecPod Technologies