CWE-673 - External Influence of Sphere Definition
- Abstraction:Class
- Structure:Simple
- Status:Draft
- Release Date:2008-04-11
- Latest Modification Date:2023-10-26
Weakness Name
External Influence of Sphere Definition
Description
The product does not prevent the definition of control spheres from external actors.
Typically, a product defines its control sphere within the code itself, or through configuration by the product's administrator. In some cases, an external party can change the definition of the control sphere. This is typically a resultant weakness.
Common Consequences
Scope: Other
Impact: Other
