CWE-456

Missing Initialization of a Variable

The product does not initialize critical variables, which causes the execution environment to use unexpected values.

Mitigation ID: MIT-57

Phase: Implementation

Strategy: Attack Surface Reduction

Description:

  • Ensure that critical variables are initialized before first use [REF-1485].
Mitigation

Phase: Requirements

Strategy: Language Selection

Description:

  • Choose a language that is not susceptible to these issues.

No CAPEC attack patterns related to this CWE.

Back to CWE stats page