CWE-1090 包含从另一个类访问成员元素的方法
Method Containing Access of a Member Element from Another Class
结构: Simple
Abstraction: Base
状态: Incomplete
被利用可能性: unkown
基本描述
A method for a class performs an operation that directly accesses a member element from another class.
扩展描述
This issue suggests poor encapsulation and makes it more difficult to understand and maintain the software, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.
相关缺陷
-
cwe_Nature: ChildOf cwe_CWE_ID: 1061 cwe_View_ID: 1000 cwe_Ordinal: Primary
-
cwe_Nature: ChildOf cwe_CWE_ID: 1061 cwe_View_ID: 699 cwe_Ordinal: Primary
常见的影响
| 范围 | 影响 | 注释 |
|---|---|---|
| Other | Reduce Maintainability |
分类映射
| 映射的分类名 | ImNode ID | Fit | Mapped Node Name |
|---|---|---|---|
| OMG ASCMM | ASCMM-MNT-16 |