CWE-1120—Excessive Code Complexity
PUBLISHEDweakness record
released 2019-01-03 · last modified 2025-12-11
Metadata
- CWE ID:
- CWE-1120
- 摘要:
- Class
- 结构:
- Simple
- 状态:
- Incomplete
- 发布日期:
- 2019-01-03
- 更新日期:
- 2025-12-11
名称
Excessive Code Complexity
描述
The code is too complex, as calculated using a well-defined, quantitative measure.
常见后果
- 范围:
- Other
- 影响:
- Reduce Maintainability, Increase Analytical Complexity
- 注释:
- This issue makes it more difficult to understand and/or maintain the product, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.
- 范围:
- Other
- 影响:
- Reduce Performance
- 注释:
- This issue can make the product perform more slowly. If the relevant code is reachable by an attacker, then this performance problem might introduce a vulnerability.