CWE-628 - Function Call with Incorrectly Specified Arguments
- Abstraction:Base
- Structure:Simple
- Status:Draft
- Release Date:2007-05-07
- Latest Modification Date:2023-06-29
Weakness Name
Function Call with Incorrectly Specified Arguments
Description
The product calls a function, procedure, or routine with arguments that are not correctly specified, leading to always-incorrect behavior and resultant weaknesses.
There are multiple ways in which this weakness can be introduced, including:
Common Consequences
Scope: Other, Access Control
Impact: Quality Degradation, Gain Privileges or Assume Identity
Notes: This weakness can cause unintended behavior and can lead to additional weaknesses such as allowing an attacker to gain unintended access to system resources.
