CWE-1188β€”Initialization of a Resource with an Insecure Default

PUBLISHEDweakness record
released 2019-06-20 Β· last modified 2025-12-11

Metadata

CWE ID:
CWE-1188
Abstraction:
Base
Structure:
Simple
Status:
Incomplete
Release Date:
2019-06-20
Latest Modification Date:
2025-12-11

Weakness Name

Initialization of a Resource with an Insecure Default

Description

The product initializes or sets a resource with a default that is intended to be changed by the product's installer, administrator, or maintainer, but the default is not secure.

Common Consequences

Scope:
Other
Impact:
Varies by Context
Notes:
The impact of insecure defaults varies widely depending on the functionality that the product controls.

Related Weaknesses