CWE-1104—Use of Unmaintained Third Party Components
PUBLISHEDweakness record
released 2019-01-03 · last modified 2026-04-30
Metadata
- CWE ID:
- CWE-1104
- 摘要:
- Base
- 结构:
- Simple
- 状态:
- Incomplete
- 发布日期:
- 2019-01-03
- 更新日期:
- 2026-04-30
名称
Use of Unmaintained Third Party Components
描述
The product relies on third-party components that are not actively supported or maintained by the original developer or a trusted proxy for the original developer.
常见后果
- 范围:
- Other
- 影响:
- Reduce Maintainability, Varies by Context
- 注释:
- Relying on unmaintained components makes it difficult or impossible to fix significant bugs and vulnerabilities, can render code obsolete, and undermine security by complicating maintenance and increasing the risk of new vulnerabilities.