VYPR

CWE-544

Missing Standardized Error Handling Mechanism

BaseDraft

Description

The product does not use a standardized method for handling errors throughout the code, which might introduce inconsistent error handling and resultant weaknesses.

If the product handles error messages individually, on a one-by-one basis, this is likely to result in inconsistent error handling. The causes of errors may be lost. Also, detailed information about the causes of an error may be unintentionally returned to the user.

Hierarchy (View 1000)

Parents

Children

none

CVEs mapped to this weakness (3)

  • CVE-2024-47971MedOct 7, 2024
    risk 0.42cvss 6.5epss 0.00

    Improper error handling in firmware of some SSD DC Products may allow an attacker to enable denial of service.

  • CVE-2023-6599Dec 8, 2023
    risk 0.00cvss epss 0.00

    Missing Standardized Error Handling Mechanism in GitHub repository microweber/microweber prior to 2.0.

  • CVE-2020-10800Mar 21, 2020
    risk 0.00cvss epss 0.01

    lix through 15.8.7 allows man-in-the-middle attackers to execute arbitrary code by modifying the HTTP client-server data stream so that the Location header is associated with attacker-controlled executable content in the postDownload field.