Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (3.0)  

CWE CATEGORY: SFP Secondary Cluster: Use of an Improper API

Category ID: 1001
Status: Incomplete
+ Summary
This category identifies Software Fault Patterns (SFPs) within the Use of an Improper API cluster.
+ Membership
MemberOfCategoryCategory887SFP Primary Cluster: API
HasMemberBaseBase111Direct Use of Unsafe JNI
HasMemberCategoryCategory2277PK - API Abuse
HasMemberBaseBase242Use of Inherently Dangerous Function
HasMemberVariantVariant245J2EE Bad Practices: Direct Management of Connections
HasMemberVariantVariant246J2EE Bad Practices: Direct Use of Sockets
HasMemberVariantVariant382J2EE Bad Practices: Use of System.exit()
HasMemberVariantVariant383J2EE Bad Practices: Direct Use of Threads
HasMemberBaseBase432Dangerous Signal Handler not Disabled During Sensitive Operations
HasMemberBaseBase439Behavioral Change in New Version or Environment
HasMemberBaseBase440Expected Behavior Violation
HasMemberBaseBase474Use of Function with Inconsistent Implementations
HasMemberBaseBase477Use of Obsolete Function
HasMemberVariantVariant479Signal Handler Use of a Non-reentrant Function
HasMemberVariantVariant558Use of getlogin() in Multithreaded Application
HasMemberVariantVariant572Call to Thread run() instead of start()
HasMemberClassClass573Improper Following of Specification by Caller
HasMemberVariantVariant574EJB Bad Practices: Use of Synchronization Primitives
HasMemberVariantVariant575EJB Bad Practices: Use of AWT Swing
HasMemberVariantVariant576EJB Bad Practices: Use of Java I/O
HasMemberVariantVariant577EJB Bad Practices: Use of Sockets
HasMemberVariantVariant578EJB Bad Practices: Use of Class Loader
HasMemberVariantVariant586Explicit Call to Finalize()
HasMemberVariantVariant589Call to Non-ubiquitous API
HasMemberVariantVariant617Reachable Assertion
HasMemberBaseBase676Use of Potentially Dangerous Function
HasMemberClassClass684Incorrect Provision of Specified Functionality
HasMemberBaseBase695Use of Low-Level Functionality
HasMemberClassClass758Reliance on Undefined, Unspecified, or Implementation-Defined Behavior
+ Content History
Submission DateSubmitterOrganization
2014-07-29CWE Content TeamMITRE

More information is available — Please select a different filter.
Page Last Updated: January 18, 2018