CWE-1266
Improper Scrubbing of Sensitive Data from Decommissioned Device
BaseIncomplete
Description
The product does not properly provide a capability for the product administrator to remove sensitive data at the time the product is decommissioned. A scrubbing capability could be missing, insufficient, or incorrect.
Hierarchy (View 1000)
Parents
Children
none
Related attack patterns (CAPEC)
CAPEC-150 · CAPEC-37 · CAPEC-545 · CAPEC-546 · CAPEC-675
CVEs mapped to this weakness (0)
No CVEs match the current filter.