CWE-1072—Data Resource Access without Use of Connection Pooling
PUBLISHEDweakness record
released 2019-01-03 · last modified 2025-12-11
Metadata
- CWE ID:
- CWE-1072
- 摘要:
- Base
- 结构:
- Simple
- 状态:
- Incomplete
- 发布日期:
- 2019-01-03
- 更新日期:
- 2025-12-11
名称
Data Resource Access without Use of Connection Pooling
描述
The product accesses a data resource through a database without using a connection pooling capability.
常见后果
- 范围:
- Other
- 影响:
- Reduce Performance
- 注释:
- This issue can make the product perform more slowly, as connection pools allow connections to be reused without the overhead and time consumption of opening and closing a new connection. If the relevant code is reachable by an attacker, then this performance problem might introduce a vulnerability.