CWE-607β€”Public Static Final Field References Mutable Object

PUBLISHEDweakness record
released 2007-05-07 Β· last modified 2025-12-11

Metadata

CWE ID:
CWE-607
Abstraction:
Variant
Structure:
Simple
Status:
Draft
Release Date:
2007-05-07
Latest Modification Date:
2025-12-11

Weakness Name

Public Static Final Field References Mutable Object

Description

A public or protected static final field references a mutable object, which allows the object to be changed by malicious code, or accidentally from another package.

Common Consequences

Scope:
Integrity
Impact:
Modify Application Data

Related Weaknesses