Description
The product has a loop body or loop condition that contains a control element that directly or indirectly consumes platform resources, e.g. messaging, sessions, locks, or file descriptors.
Potential Impact
Availability
DoS: Resource Consumption (CPU), DoS: Resource Consumption (Memory), DoS: Resource Consumption (Other), Reduce Performance
Related Weaknesses
Taxonomy Mappings
- OMG ASCPEM: ASCPEM-PRF-8 —
Frequently Asked Questions
What is CWE-1050?
CWE-1050 (Excessive Platform Resource Consumption within a Loop) is a software weakness identified by MITRE's Common Weakness Enumeration. It is classified as a Base-level weakness. The product has a loop body or loop condition that contains a control element that directly or indirectly consumes platform resources, e.g. messaging, sessions, locks, or file descriptors.
How can CWE-1050 be exploited?
Attackers can exploit CWE-1050 (Excessive Platform Resource Consumption within a Loop) to dos: resource consumption (cpu), dos: resource consumption (memory), dos: resource consumption (other), reduce performance. This weakness is typically introduced during the Implementation phase of software development.
How do I prevent CWE-1050?
Follow secure coding practices, conduct code reviews, and use automated security testing tools (SAST/DAST) to detect this weakness early in the development lifecycle.
What is the severity of CWE-1050?
CWE-1050 is classified as a Base-level weakness (Medium abstraction). Its actual severity depends on the specific context and how the weakness manifests in your application.