1. Home
  2. CWE Database
  3. CWE-1068
Base · Medium

CWE-1068: Inconsistency Between Implementation and Documented Design

The implementation of the product is not consistent with the design as described within the relevant documentation.

CWE-1068 · Base Level

Description

The implementation of the product is not consistent with the design as described within the relevant documentation.

Potential Impact

Other

Reduce Maintainability, Increase Analytical Complexity

CWE-710: Improper Adherence to Coding Standards

The product does not follow certain coding rules for development, which can lead to resultant weaknesses or increase the...

Frequently Asked Questions

What is CWE-1068?

CWE-1068 (Inconsistency Between Implementation and Documented Design) is a software weakness identified by MITRE's Common Weakness Enumeration. It is classified as a Base-level weakness. The implementation of the product is not consistent with the design as described within the relevant documentation.

How can CWE-1068 be exploited?

Attackers can exploit CWE-1068 (Inconsistency Between Implementation and Documented Design) to reduce maintainability, increase analytical complexity. This weakness is typically introduced during the Implementation phase of software development.

How do I prevent CWE-1068?

Follow secure coding practices, conduct code reviews, and use automated security testing tools (SAST/DAST) to detect this weakness early in the development lifecycle.

What is the severity of CWE-1068?

CWE-1068 is classified as a Base-level weakness (Medium abstraction). Its actual severity depends on the specific context and how the weakness manifests in your application.