Indicator of Poor Code Quality
Description The code has features that do not directly introduce a weakness or vulnerability, but indicate that the product has not been carefully developed or maintained. Extended DescriptionPrograms are more likely to be secure when good development practices are followed. If a program is complex, difficult to maintain, not portable, or shows evidence of neglect, then there is a higher likelihood that weaknesses are buried in the code. Applicable PlatformsNone Time Of Introduction
Common Consequences
Detection MethodsNone Potential MitigationsNone Relationships
Demonstrative ExamplesNone White Box Definitions None Black Box Definitions None Taxynomy Mappings
References:None |