CWE-1106—Insufficient Use of Symbolic Constants
PUBLISHEDweakness record
released 2019-01-03 · last modified 2025-12-11
Metadata
- CWE ID:
- CWE-1106
- 摘要:
- Base
- 结构:
- Simple
- 状态:
- Incomplete
- 发布日期:
- 2019-01-03
- 更新日期:
- 2025-12-11
名称
Insufficient Use of Symbolic Constants
描述
The source code uses literal constants that may need to change or evolve over time, instead of using symbolic constants.
常见后果
- 范围:
- Other
- 影响:
- Reduce Maintainability, Increase Analytical Complexity
- 注释:
- This issue makes it more difficult to maintain the product, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.