CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (2.10)  
ID

CWE-675: Duplicate Operations on Resource

Weakness ID: 675
Abstraction: Class
Status: Draft
Presentation Filter:
+ Description

Description Summary

The product performs the same operation on a resource two or more times, when the operation should only be applied once.
+ Time of Introduction
  • Implementation
+ Applicable Platforms

Languages

All

+ Common Consequences
ScopeEffect
Other

Technical Impact: Other

+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ChildOfWeakness ClassWeakness Class573Improper Following of Specification by Caller
Development Concepts (primary)699
Research Concepts (primary)1000
ChildOfCategoryCategory743CERT C Secure Coding Section 09 - Input Output (FIO)
Weaknesses Addressed by the CERT C Secure Coding Standard (primary)734
ChildOfCategoryCategory877CERT C++ Secure Coding Section 09 - Input Output (FIO)
Weaknesses Addressed by the CERT C++ Secure Coding Standard (primary)868
ChildOfCategoryCategory984SFP Secondary Cluster: Life Cycle
Software Fault Pattern (SFP) Clusters (primary)888
PeerOfWeakness VariantWeakness Variant102Struts: Duplicate Validation Forms
Research Concepts1000
PeerOfWeakness ClassWeakness Class227Improper Fulfillment of API Contract ('API Abuse')
Research Concepts1000
PeerOfWeakness VariantWeakness Variant586Explicit Call to Finalize()
Research Concepts1000
ParentOfWeakness VariantWeakness Variant174Double Decoding of the Same Data
Research Concepts (primary)1000
ParentOfWeakness VariantWeakness Variant415Double Free
Research Concepts1000
ParentOfWeakness BaseWeakness Base605Multiple Binds to the Same Port
Research Concepts (primary)1000
ParentOfWeakness VariantWeakness Variant764Multiple Locks of a Critical Resource
Research Concepts1000
ParentOfWeakness VariantWeakness Variant765Multiple Unlocks of a Critical Resource
Research Concepts1000
PeerOfWeakness VariantWeakness Variant85Doubled Character XSS Manipulations
Research Concepts1000
+ Relationship Notes

This weakness is probably closely associated with other issues related to doubling, such as CWE-462 (duplicate key in alist) or CWE-102 (Struts duplicate validation forms). It's usually a case of an API contract violation (CWE-227).

+ Relevant Properties
  • Uniqueness
+ Taxonomy Mappings
Mapped Taxonomy NameNode IDFitMapped Node Name
CERT C Secure CodingFIO31-CDo not simultaneously open the same file multiple times
CERT C++ Secure CodingFIO31-CPPDo not simultaneously open the same file multiple times
+ Content History
Modifications
Modification DateModifierOrganizationSource
2008-07-01Eric DalciCigitalExternal
updated Time_of_Introduction
2008-09-08CWE Content TeamMITREInternal
updated Relationships, Other_Notes
2008-11-24CWE Content TeamMITREInternal
updated Relationships, Taxonomy_Mappings
2009-05-27CWE Content TeamMITREInternal
updated Relationships
2009-10-29CWE Content TeamMITREInternal
updated Other_Notes, Relationship_Notes
2011-06-01CWE Content TeamMITREInternal
updated Common_Consequences
2011-09-13CWE Content TeamMITREInternal
updated Relationships, Taxonomy_Mappings
2012-05-11CWE Content TeamMITREInternal
updated Relationships
2014-07-30CWE Content TeamMITREInternal
updated Relationships
2017-01-19CWE Content TeamMITREInternal
updated Relationships

More information is available — Please select a different filter.
Page Last Updated: January 18, 2017