CWE-390 - Detection of Error Condition Without Action

  • Abstraction:Base
  • Structure:Simple
  • Status:Draft
  • Release Date:2006-07-19
  • Latest Modification Date:2025-12-11

Weakness Name

Detection of Error Condition Without Action

Description

The product detects a specific error, but takes no actions to handle the error.

Common Consequences

Scope: Integrity, Other

Impact: Varies by Context, Unexpected State, Alter Execution Logic

Notes: An attacker could utilize an ignored error condition to place the system in an unexpected state that could lead to the execution of unintended logic and could cause other unintended behavior.

Related Weaknesses

CWE-401Missing Release of Memory after Effective LifetimeMedium

CWE-755Improper Handling of Exceptional ConditionsMedium