Back to CWE list
CWE-673
External Influence of Sphere Definition
Class
Draft
Description
The product does not prevent the definition of control spheres from external actors.
Typically, a product defines its control sphere within the code itself, or through configuration by the product's administrator. In some cases, an external party can change the definition of the control sphere. This is typically a resultant weakness.
Parent Weaknesses (ChildOf)
Common Consequences
Scope
Other
Impact
Other
CVE-2008-2613setuid program allows compromise using path that finds and loads a malicious library.
Applicable Platforms
Not Language-Specific
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now